{ "@context": "https://openvex.dev/ns/v0.2.0", "@id": "https://openvex.dev/docs/public/vex-51c4ba72a22059b6ea56cbf339a40547710883065597f3837341b7b04e42cf90", "author": "minimus", "timestamp": "2026-06-26T14:33:13.955983138Z", "version": 1, "statements": [ { "vulnerability": { "name": "MINI-2256-qmv4-xpgc", "aliases": [ "CVE-2026-6276" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-226g-p2pw-3g3c", "aliases": [ "CVE-2025-28164" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-22cr-359c-gxmg", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-22rg-vwrj-463p", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-22x3-fvg3-5qr8", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-22xr-6j92-jfgp", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-2365-3qx4-qfcc", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-2377-mf86-j988", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-237p-mp72-4g9q", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-23fg-xrx4-ww8q", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-23p3-qw4q-3336", "aliases": [ "CVE-2026-4438" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-23wm-jhm6-4r63", "aliases": [ "CVE-2025-8225" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-23x5-r66j-m49c", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-243q-qvq2-6mq6", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-246h-gv3f-97xv", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-246x-qx69-wc4p", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-24m4-93f6-8qjg", "aliases": [ "CVE-2026-45445" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-24q8-wvg6-xh94", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.0@4.11.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-25jp-qphr-h6jv", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-25m5-597x-42cp", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-262c-75cr-xhmc", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-start-2.6.14@2.6.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-2638-6jr9-3j53", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-2677-hq3q-h9gw", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-267g-mw7c-j5pr", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-2683-8qxh-v6v5", "aliases": [ "CVE-2025-69650" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-26j5-rh4j-wmpf", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-2727-wmv2-9hpf", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-27r8-ch73-xc22", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-27v9-4377-jvqp", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-2822-883x-pcjx", "aliases": [ "CVE-2026-33811" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33811/references" }, { "vulnerability": { "name": "MINI-2827-82qg-7rx5", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-start-2.6.14@2.6.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-282g-97p8-p7c8", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-288h-fhvm-c4f4", "aliases": [ "CVE-2026-1229" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-1229/references" }, { "vulnerability": { "name": "MINI-28j8-7r6p-v9gp", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.0@3.12.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-28m3-w39x-f5w7", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-28pf-w58w-9cjv", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-28wp-p4cx-jjcj", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-292q-w76w-757w", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-2944-8x2m-h363", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-2945-rqgx-7j7m", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-297h-pcrx-xxjm", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-29mq-xvxq-7g5h", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-2c3j-x284-qqj7", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-2c7v-j2m5-vrmf", "aliases": [ "CVE-2024-0406" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-0406/references" }, { "vulnerability": { "name": "MINI-2chp-43m3-4635", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-2crv-hx22-g4v4", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-2f2w-7rmx-rf85", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-2f37-8q43-vpmf", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-2ff8-983c-gg35", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-2fr2-c3gq-g6xr", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-2fr6-jx76-6pgw", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-2frv-f6xp-cc32", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-2g38-pf9v-vr98", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-2gcg-mwhj-6w3x", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-2gmq-wfw5-r6vv", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-2h4r-37h6-hfc7", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-2h52-6xfw-c3fg", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-2h74-56hx-j4jg", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-2hjj-48r3-j2h4", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-2hqj-423r-xwh9", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-2hwr-67cp-gpf5", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-2j39-x56v-pq84", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-2j9q-vj67-qm5h", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-2jfg-xqp3-q2pq", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-2jmh-rpm2-chh8", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-2jmj-259v-5mq8", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-2jrp-h7w7-gwpw", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-2m35-hxrh-m635", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-2m76-j558-8qqj", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-2mfj-fhgq-wfjf", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-2mvh-76mf-7528", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-2p68-vhm4-8pcg", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-2p95-wf9p-5cfq", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-2qc3-w69f-qwhj", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-2qcg-gg3x-jq5w", "aliases": [ "CVE-2026-39820" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39820/references" }, { "vulnerability": { "name": "MINI-2qhw-x4pf-pgx5", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-2qhx-qw7g-3x5r", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-2r2f-pgm3-6rcq", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-2r44-9qcq-rj95", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-2r9h-wv96-49hx", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-2rc2-pjj3-7c45", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-2rhv-564p-55qf", "aliases": [ "CVE-2025-69421" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2rjq-464j-rpq2", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-2rv3-59c3-835p", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-2vch-xq2h-6gpm", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-2vfg-xg4h-25x4", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-2vfv-wm5j-j54c", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-2vm3-wr83-88gc", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-2vpj-4vqh-wqg3", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-2vrv-pv8h-h58f", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-2w2f-w774-prqx", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-2w6f-www4-234j", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-2wfg-7pcg-www8", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-2wp2-47vv-qh2c", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-2wq2-46gw-76pf", "aliases": [ "CVE-2026-32631" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2xc5-hxfc-j2xq", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.2@5.13.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-2xcx-cqqr-76gw", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-2xj7-m677-34h2", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-2xm9-cvvq-5qpw", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-2xp7-vg68-3q4m", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-326v-hqvv-85rj", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-3288-pcc6-g53r", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-32j6-hx29-5r4v", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-32pc-c26x-69jf", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-32v7-9xfc-cww2", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-32w3-r3h8-j62r", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-32wm-v653-xr4v", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-3394-ghq2-fwmw", "aliases": [ "CVE-2026-6846" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Not considered as a security issue by the maintainers" }, { "vulnerability": { "name": "MINI-33x4-hc45-m783", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-343m-qxxw-hff7", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-346q-c9hf-vq95", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-349f-fpmv-mqq8", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-34j8-vmg3-h3pm", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-34wm-3p5f-rxmw", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-35c5-62wx-j22q", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.2@3.9.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-35fg-cmqq-4ch2", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-35gc-px9c-5pw5", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-35hc-h56c-w244", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-35r6-6r87-rmq8", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.0@4.11.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-35x3-hxcp-qxrx", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-367f-gc8h-5xg9", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-36f3-rx9g-wvmv", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-36h7-cmxx-2jfc", "aliases": [ "CVE-2024-0406" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-0406/references" }, { "vulnerability": { "name": "MINI-3729-6w87-2929", "aliases": [ "CVE-2025-60876" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3735-jx47-4c5m", "aliases": [ "CVE-2026-25934" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25934/references" }, { "vulnerability": { "name": "MINI-373j-87x5-cfqg", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-3763-fgjc-2c22", "aliases": [ "CVE-2026-1229" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-1229/references" }, { "vulnerability": { "name": "MINI-379x-2r4p-4vc7", "aliases": [ "CVE-2026-34182" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-37qr-c383-w4px", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-3823-mg4w-83hx", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-3868-3h9f-xw5j", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-386c-5f3w-qpp4", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-38gv-2jgh-3vhv", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-38h7-frw3-xq6r", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-syft-2.32.0@2.32.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-38rj-4mcv-qw57", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-392f-fqc4-8j68", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-396x-49hg-7h5w", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-398c-hf5h-jm3g", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-39cv-6m8p-vj35", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-39hc-v532-7664", "aliases": [ "CVE-2025-21613" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-21613/references" }, { "vulnerability": { "name": "MINI-39w4-hx45-8ggc", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-3c7g-pj4m-jpv2", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-3c9h-wm54-545m", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-3ch8-4fr5-84j3", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-3cpc-mp4w-59q3", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-3f28-p62q-7h2x", "aliases": [ "CVE-2025-15467" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3f9h-6qqj-54qm", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-3f9w-4cfc-6f26", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-3ff9-rwpf-3ccc", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-3fh2-3wxq-5c2h", "aliases": [ "CVE-2026-24051" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-3fwp-pfqh-p2cx", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-3g23-fj53-87px", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-3g53-j399-3mff", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-3g54-4vqw-3j6w", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-3g5x-cmfw-79pc", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-3g7v-cw94-cjpv", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-3ggf-gq2w-657x", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-syft-2.32.0@2.32.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-3grw-48fv-vpmr", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-3h77-4rpc-5m23", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-3h8h-8wqx-9r79", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-3hm6-mgx4-28c5", "aliases": [ "CVE-2024-52006" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3j2c-fhf7-76wv", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.0@3.9.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-3j3x-fgrq-9qh8", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-3jcf-cq7g-j6v8", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-3jp4-55j5-wwgw", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-3jpr-wm97-2wfq", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-3jx9-w69q-v5j9", "aliases": [ "CVE-2026-0861" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3m22-p5pj-w7cx", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.0@4.12.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-3mfm-cw85-m643", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-3mhw-qv5c-646j", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-3mmr-8j3w-q548", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-3mvx-p9qp-9p42", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-3p36-q3x5-q2f6", "aliases": [ "CVE-2026-27143" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3p78-9pgc-4543", "aliases": [ "CVE-2025-8224" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pc6-php8-fx8h", "aliases": [ "CVE-2025-48384" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pcq-xh3r-4f7w", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-3pj6-j6j8-r5xm", "aliases": [ "CVE-2025-70873" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3q37-v4gw-7hw9", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-3q4g-94r3-gcgp", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-3qc6-9jf9-9qxc", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-3qfr-vg2w-gv6f", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-3rf8-prxq-hcfv", "aliases": [ "CVE-2024-24579" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-24579/references" }, { "vulnerability": { "name": "MINI-3rfv-6rhg-fq9p", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-3rhc-6jpm-3h48", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-3rj9-c28p-jgp7", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22872/references" }, { "vulnerability": { "name": "MINI-3rqw-jvqm-58p7", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-3v9f-crwg-866j", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-3vgq-gjqp-p539", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.2@4.11.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-3vj8-grmf-hvjh", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-3vjj-79gp-8r7r", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-3vqg-pv9r-jvxr", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-3wc9-v3w6-rjfm", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-3wf2-2qv2-hh39", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-3wh3-fr5j-7hrw", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-git-1.1.18@1.1.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-3whq-pjf2-g58r", "aliases": [ "CVE-2025-58181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58181/references" }, { "vulnerability": { "name": "MINI-3wpq-gc3r-qfg7", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-3wq4-qqmm-jwc9", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-3wr7-4c3x-2rgv", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-3x4v-r4g9-m3f8", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-3x98-fp6p-mrwj", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-3xcc-xg6c-cjg2", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-3xcr-mphg-29r4", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-3xqp-wrc4-59v8", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-4224-rpfh-w95c", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-424f-w4w2-r5q2", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-4282-c2j5-pv6g", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22872/references" }, { "vulnerability": { "name": "MINI-4283-2pg7-8vvr", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-4287-wmx2-qq2p", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-4293-jxqx-gfv4", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-42fv-qvcv-cfp7", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-42vr-jcg6-86vj", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-4326-r2wv-fffw", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-432f-vrwf-gpcp", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-433q-93g7-g9fj", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-436r-c6wc-vr2g", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-43cg-9fcp-r525", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-43hm-mc57-g3wm", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-43j6-cjwg-wvr4", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-43jx-p52j-96w5", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-43m8-p99v-f4cf", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-443x-h35q-gm9w", "aliases": [ "CVE-2025-11412" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-445p-c3xp-5grm", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-44q9-crv7-xvcw", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-44v5-4hgv-w5jx", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-455f-m675-99qf", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-45mv-fjc6-4q4c", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-45q4-wh8j-5wj8", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-45v5-7wgh-f7xr", "aliases": [ "CVE-2026-33416" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-45vx-qqqw-7rwr", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-4624-8hpg-rcj5", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-465j-hx22-wv7w", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-46ff-3rrr-4gxr", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-46j8-9wrv-m925", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-46pr-5cr6-xm5m", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-47p7-fhpq-f73m", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-47xh-6g7j-gqq6", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-47xh-xjfx-wp99", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-486f-rrpf-p59c", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-488f-2p62-88wr", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-48hv-xx36-wxx3", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-48q9-25gr-98rg", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-498q-fpm4-fcgg", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-49cr-66p8-78gp", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-49cx-j3r2-r26m", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-49fc-2q5j-cqg9", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-49p9-h486-5wcv", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-49qr-vvwj-wfjx", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-49w8-9829-wj7r", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-49x3-wf2p-rmh6", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-4c4m-332w-49wh", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-4c5h-chfq-whcv", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-jattach-1.12.2@1.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-4c8j-9gvw-8j8p", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-4cch-xw7f-vqjm", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-4cf8-xfpm-j3v7", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-4cgc-3f9j-fmr9", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-4cr3-r2jp-5mrf", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-4cr6-mqxp-j42m", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-4fj7-p395-vh49", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-4fjr-7vjm-gccq", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-4fv6-wf2f-h39v", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-4fvj-7j6r-cfpg", "aliases": [ "CVE-2026-4873" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4fw2-gfxv-xh7j", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-4gf5-vjcg-hf5g", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-4gmm-w4fm-px7q", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-4gv8-7qmg-9h9r", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-4h8w-gcm3-xgxp", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-4hff-6j5q-cp3r", "aliases": [ "CVE-2025-0395" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hjh-5x97-2jv2", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-4hjr-3rw9-p262", "aliases": [ "CVE-2019-1010025" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-4hmr-83xw-499m", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-4hvf-f9h9-475c", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-4hx7-r8fj-4v45", "aliases": [ "CVE-2026-5928" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hxm-r62w-wrfv", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-4j2v-3jgx-89xx", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-4j59-39x2-m676", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-4j8f-5ggg-fh5r", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-4j93-x8hr-fppj", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-4jq7-g964-rv62", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-4jw7-87q2-5xh9", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-4m3g-8fch-6g2m", "aliases": [ "CVE-2024-24579" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-24579/references" }, { "vulnerability": { "name": "MINI-4m3m-492r-xvr3", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.2@4.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-4mcf-mrmv-w3vx", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-4mgr-xx4g-j4gx", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-4mh4-mhrh-qrcm", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-4mr5-4hj7-vhvh", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-4mwp-32g3-4x3m", "aliases": [ "CVE-2026-5358" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was rejected by sourceware, for more details refer to - https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2026-0008;h=43b38ce38a78b6458608fa4c044994b8d8516751;hb=HEAD" }, { "vulnerability": { "name": "MINI-4p3r-r7cx-c439", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-4p84-g29c-pjxh", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-4pmc-m9r7-vm4p", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-4q99-9rwg-pw3f", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-4qc7-g52j-c2v5", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-4qjv-9x76-q43q", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-4qjx-27c7-7x49", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-4qmp-hfg2-p3p4", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-4qqv-pv9m-xgcw", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-4qrp-mwp3-f8ff", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-4r3g-62g9-x6j2", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-4r8w-gh4h-c4jf", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-4rc5-xmmq-4hq2", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-4rcx-q6v3-5whw", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-4rgh-vpvj-c982", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-4rr3-6626-999v", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-4rr5-xf3q-pjvj", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-4v34-gw64-8fg7", "aliases": [ "CVE-2026-32283" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4v53-f2jj-8v2p", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-4w4j-8vr4-jwfj", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-4wg6-qcgh-h7hv", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-4wv9-hmfm-cf93", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-4ww4-xh56-p8v3", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-google-stackdriver-10.2.2@10.2.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-4wx5-4f43-m499", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-4x7m-q6qj-77hc", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-4x86-g3m3-4g2j", "aliases": [ "CVE-2025-47913" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47913/references" }, { "vulnerability": { "name": "MINI-4xj4-8p2w-h84g", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-4xpr-5j3h-rc7j", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-52f5-r5pj-382r", "aliases": [ "CVE-2025-65018" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-52vc-g6qp-48qc", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-52vg-8h8f-hr6c", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-5333-27c4-p8c4", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-53ff-r7vq-8xmx", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-53h5-c47r-mq7r", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-53j5-jpcc-x79q", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-549r-78vg-g92w", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-54fp-78h9-925p", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-54gw-98h3-3r9p", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-54jg-pm2c-7xfv", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-54vc-3v3f-rqr2", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-555g-9gh2-pf28", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-555m-596m-hwwq", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-556j-x46m-7257", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-55cx-g38j-fhvq", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-55h8-5jhx-2cmx", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-55wg-q942-vqv9", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-5672-248g-cvfr", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-5699-2qf6-m8cp", "aliases": [ "CVE-2026-5435" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-56f9-r345-8g9v", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-56m8-7fj6-w2c4", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-56p5-wjgw-vcfj", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-56rq-mh5m-7hgg", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-56vj-h5w4-c3h4", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-5766-rrrv-jqv2", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-5789-c952-wmp2", "aliases": [ "CVE-2025-29087" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-57gq-q9mp-xw6c", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-57h3-29vg-4qrg", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-5837-9hg6-736m", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-5856-qqjm-2p2c", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-5896-rq3p-9v3r", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-58f9-vjpw-hpmg", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-58h7-487f-2xfp", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-58pm-m586-rj2q", "aliases": [ "CVE-2025-48385" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-58rm-6m45-vp4v", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-58rm-w3fp-mpjj", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-java-memory-assistant-1.10.2@1.10.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-5927-f284-96fh", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-5955-2qqf-66fm", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-597q-276j-rrg6", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-59jc-23xj-q9gf", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-59qj-h879-r87m", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-59wh-23w7-jfg7", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-5c4w-q4xj-j4rr", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-5c7p-fgff-3gg4", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-5ccf-q3vj-rf5m", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-5cgc-3g7p-qc3w", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-5ch2-7gcq-93cc", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-5ch3-539h-g6w3", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-5cpq-6x4r-m68v", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-5cxp-9hq7-p4h7", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-5f49-m9pw-6vh7", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-5fjx-vf2p-58pf", "aliases": [ "CVE-2025-3445" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-3445/references" }, { "vulnerability": { "name": "MINI-5fxv-vj8g-45vj", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-5g83-2rpc-pjjc", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-5ggw-jwjg-mg89", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-5gjh-f7mr-p3mx", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-5gpv-95fw-7x9w", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-5h37-39fp-34vf", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-5h3v-hwwf-688f", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-5h5c-ccxv-mp84", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-5h6g-x82g-2r45", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-5h7f-f557-5w69", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-5j34-cjgg-fq98", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-5j3h-p49c-mjmr", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-5j49-fr3g-3hxx", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-start-2.4.15@2.4.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-5j4q-rjm5-3r76", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-5j9q-433g-6wv9", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-5jh4-wcfr-3f24", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-5jq6-6v85-gf9j", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-5m9m-6wv5-j8q9", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-5mxg-h6rc-4wfj", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-5pcw-6frv-c749", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-5q7h-fvxg-j54x", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-5qm8-78vh-cvx2", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-5qwj-cp74-97fg", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-5qxf-f5xv-p5mj", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-5r3h-v7v6-v8fq", "aliases": [ "CVE-2024-25621" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-25621/references" }, { "vulnerability": { "name": "MINI-5rf7-jpg3-vpj7", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-5rgg-c2mq-rgj8", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-5rgh-w6qx-pxvv", "aliases": [ "CVE-2025-64505" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5rh2-5685-xgq4", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-5rjw-p3m8-fmfv", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-5rpx-h4gq-846q", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-5v34-j7gh-wcjq", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-5v7g-jr5f-742h", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-5v8x-qm32-mwxx", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22870/references" }, { "vulnerability": { "name": "MINI-5vcm-jc8j-wgvp", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-5vgc-32cc-m48h", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-5vhh-5ppp-9fc3", "aliases": [ "CVE-2025-3277" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vhr-gpqc-m66r", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-5w3g-g877-485c", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-5w9c-7chv-24x4", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-5w9p-v2f7-4w3g", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-5wcq-j4c4-pxhr", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-5wfp-gvf4-cj9q", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-5wg9-wfj3-w2qv", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-5wx6-8gmg-rm62", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-5wxx-fcv3-ppg4", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-5x3v-62m8-pv6m", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-5x4g-76j8-6p9q", "aliases": [ "CVE-2024-45338" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-45338/references" }, { "vulnerability": { "name": "MINI-5x64-5vw3-wjrp", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.2@5.13.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-5x9p-9gjg-7789", "aliases": [ "CVE-2025-3445" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-3445/references" }, { "vulnerability": { "name": "MINI-5xfc-qf8m-mg3g", "aliases": [ "CVE-2026-5704" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gnutar@1.35-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-5xgm-q6p5-v3x7", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-5xjc-c5m9-j8f8", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-5xjv-chvq-q5f9", "aliases": [ "CVE-2026-34757" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5xpj-mc8h-w33j", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-5xxc-qv3r-xmp9", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-62hw-pgmq-j3x9", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-62qx-fm7m-m2j7", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-62x8-vww5-wqxv", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.1@5.13.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-6334-6fm6-p3cv", "aliases": [ "CVE-2026-9076" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6343-p93w-9pq3", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-638v-mmr5-6x43", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-63v9-5x4r-g9f5", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-63vj-4cfr-4qhr", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-6426-cw8v-547f", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-643j-53jh-7h69", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-64rw-p5qq-qw2p", "aliases": [ "CVE-2025-47914" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47914/references" }, { "vulnerability": { "name": "MINI-652p-23g9-p5mj", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-657f-x87c-8gcv", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-659v-qmr7-qf9j", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-65gx-pq8q-5qrq", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-65hg-j3x4-m5q7", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-65mq-6v6g-jwjq", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-65ph-2x79-7rvp", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-65vv-42x2-8pv9", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-66ff-5hcw-qvgc", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-66h6-2rch-5c6p", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-66mx-jp5r-3ch6", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-66qv-qjhf-p8mr", "aliases": [ "CVE-2025-48386" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-673q-f3w8-368g", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-6772-grfc-2x7x", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-6795-hjwx-6848", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-687x-r39q-8769", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.0@3.12.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-68q2-8vgf-qh7r", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-68qm-9844-2wcf", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-68xf-4xm8-jpmx", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-692m-9vpg-p3vw", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-697j-3376-qm6c", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-69mv-hrqg-wrq5", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-69r6-3wh5-c9v7", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-6c67-fwv2-3vw7", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-6cqf-78h3-87wg", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-6cv7-jfc3-76r6", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-6cx8-5rp4-h5v5", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-6ff4-pgv4-fxrw", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-6fjw-jcg6-6hxv", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-6fp2-56rg-2qj7", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-6g6m-6fhp-qx3w", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-6gh8-rf8f-r786", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-6gvq-79mr-g5jj", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-6gxr-cwhp-m8wv", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-6h2x-8mwv-3rwv", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-6hh6-qff8-pcv8", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-6hpw-fgrc-r8gg", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-6hqm-ww8p-h58r", "aliases": [ "CVE-2026-6429" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6jjx-g8mx-h3gj", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-6jm4-69hg-c54x", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-6jph-m3x7-xgj4", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-6m55-cx88-p4gv", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-6m66-fwj3-43qx", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-6mjj-fgrx-7qgh", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-6p96-x7fq-g522", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-6pcj-87g3-fvxm", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-6pjq-h3c3-xqqc", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-6pvj-mg5r-9fcx", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-6q95-v7h2-w77x", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-6qc6-wg79-p396", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dist-zip-5.12.2@5.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-6qhf-vmcf-w8cv", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.1@3.12.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-6qpv-2hc2-wv7f", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-6qr4-hprm-w4cc", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-6qxv-32hh-x395", "aliases": [ "CVE-2026-34180" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6r4f-6wqr-g96h", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-6rf6-3392-gfwx", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-6rfm-g4xq-7j5x", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-6rfq-9f4x-9r2c", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-6rg8-5vj5-8288", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-6rgw-xfr5-gcgx", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-6rjm-hc8w-9ffh", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-6rmx-7jrj-f5xh", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.2@4.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-6rvx-3hc9-2925", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-6rx4-qw29-5fjj", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-6v29-jg7w-62cf", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-6v6r-jr76-jh8x", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-6v7c-rcj5-96v6", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-6v7x-6j6p-48c6", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-6v83-x2m6-qrvx", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-6vg4-8p3c-mp3x", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-6vmr-gq9w-q4f8", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-6vrx-c9q3-pmrh", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-6w6f-4q6g-4xfj", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-6wc2-q68h-9h5v", "aliases": [ "CVE-2025-69652" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6wcq-389r-5fvc", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.0@4.12.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-6wf8-x64m-q2px", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.2@3.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-6wmr-j2w3-7jxr", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-6x8h-mg49-q4rj", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-6xgh-5q5m-2wcp", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-6xx8-x3hv-rqpp", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-7232-75r7-c3mj", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-7267-3rh2-pgj2", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-72fj-xhxp-j2m9", "aliases": [ "CVE-2024-45338" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-45338/references" }, { "vulnerability": { "name": "MINI-72rr-526g-prvc", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-7327-7f33-x3q7", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-73mm-hpp4-4hgr", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-73rg-wrj9-xj43", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-73w2-h95v-373p", "aliases": [ "CVE-2026-1229" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-1229/references" }, { "vulnerability": { "name": "MINI-746c-3x7x-77gx", "aliases": [ "CVE-2025-69645" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-749q-4r69-f7pc", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-74g4-5574-3g8h", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-74p3-fj72-g9x2", "aliases": [ "CVE-2026-42767" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-74pr-wx9q-j826", "aliases": [ "CVE-2026-1229" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-1229/references" }, { "vulnerability": { "name": "MINI-74q9-798g-9fp3", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-74vr-wr77-c5mr", "aliases": [ "CVE-2026-1229" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-1229/references" }, { "vulnerability": { "name": "MINI-74wh-5g62-8rgg", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-75fv-63h2-hwxh", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-75gq-5232-54vq", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-datadog-6.9.2@6.9.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-75q5-3c8m-h6p5", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-7627-j72q-7jc2", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-764v-4jxw-7cxx", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-start-2.5.15@2.5.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-767r-9mhj-hrpp", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-76c2-gpmf-2hm9", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-76gr-h9pf-7ch2", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-76vj-5jgr-w828", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-7747-p66g-5qrc", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-778w-wpfh-9fwv", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-77cm-cr93-mf78", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-77q7-qp5r-8x5j", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-783h-p4jm-5xfq", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.0@5.13.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-785q-789h-r4x8", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-785w-gv8v-qgwc", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-7866-4r24-f4x5", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-786c-62fj-wq3v", "aliases": [ "CVE-2025-64329" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-64329/references" }, { "vulnerability": { "name": "MINI-78fp-w27g-55m3", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-78v7-6wqw-cqp2", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-78wf-p24q-mwgg", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-792x-g8rj-5mhj", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-7963-v84j-qw55", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-79c7-jm2r-mhqj", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-79gm-mj49-6jgp", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-79q6-6g82-f63p", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-7c3m-vvjg-6pxq", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-7c57-754f-p2vr", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-7fc7-55jr-vqf9", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-7fxf-h5c2-6x62", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-7g3m-xh2g-jc3r", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-7g97-v62f-qf3r", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-7gmj-rqcm-8j77", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-7gwq-xv5c-38p6", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-7h2g-2726-8g6x", "aliases": [ "CVE-2025-11081" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7h2p-v2hg-x2vc", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-7h2r-3j3r-p5mj", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-7h7v-xhfw-78q6", "aliases": [ "CVE-2026-33636" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hj8-299f-g6h6", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-7hm3-x9hr-w27p", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-7hp3-58q7-23r9", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-7hp4-5qf5-p38q", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.1@4.12.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-7j86-c7jw-hhh3", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-7j88-xjq4-3v5x", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-7j8m-3694-vq7m", "aliases": [ "GHSA-xr7q-jx4m-x55m" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xr7q-jx4m-x55m/references" }, { "vulnerability": { "name": "MINI-7j9j-rwpr-2c59", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-7jcp-c2x2-84pc", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-7jjj-gf8r-m3wf", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-7mcp-wgp2-m6v7", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-7mp3-429q-5prf", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-7p33-jqjm-q83v", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-7p46-mhmp-8f59", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-7ph7-6wpm-6mqf", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-7pjw-jxg6-242f", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-7pv5-8hmm-f547", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-7q6w-p9hw-r7rx", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-7q79-45qq-j4c5", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-7q86-4pwm-mvw8", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-7r4j-9pfv-x4hp", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-7r5f-v589-3fw5", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-7rch-pfx9-9rmf", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-7rq2-3gj4-r774", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-7v3q-m42m-xgpp", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-7vcv-78qp-2m27", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-7vjq-r87p-j7h8", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-7vm3-8qqx-hg3x", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-7wc7-3qr9-59q2", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-7wf4-mwmg-572x", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-7wqf-m9g3-5vmr", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-7x47-vrmg-fp59", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.2@5.13.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-7x5h-65qh-rqjw", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-7x9c-wp6r-65g2", "aliases": [ "CVE-2025-69420" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xg3-cqq5-vcrq", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-7xq4-37v3-672q", "aliases": [ "CVE-2025-46394" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8265-9qhm-8f8g", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-82cx-p9xr-33mg", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-82h2-q6hx-g7qw", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.1@3.12.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-82jg-mv7p-cc5v", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-82mr-q23r-45cg", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-82w2-p787-hcj5", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-82wf-h9q7-jrh8", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-run-script-2.3.32@2.3.32-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-82xf-ccx5-g27r", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-835p-4x2p-jf2j", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-83c9-5x99-w2cw", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-83h5-8ch9-vv3q", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-83hm-mr2v-77f7", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-83mf-x7ch-8v9h", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-upx-4.1.3@4.1.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-83vh-mfpp-j6fv", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-8427-w35w-p75x", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-8444-x9p7-f644", "aliases": [ "CVE-2025-69651" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-845g-p7cj-mqhw", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-84p9-5cfm-v362", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-84rm-xqv9-2gmv", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-84xf-hv38-86vf", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-858c-33m5-927g", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-858m-39m6-cjxj", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-85qg-87vr-hc95", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-run-0.5.18@0.5.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-85x9-9pc4-vh8p", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-868j-hxgv-m552", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-86cf-c3f5-wg3v", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-86vq-mvwf-vcc3", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-87cf-xmcw-3j6q", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-syft-2.32.0@2.32.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-87gr-p37h-p8x9", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-883v-2jgq-68rq", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-885p-rcq6-4q6h", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-8878-wjxx-2gh9", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-88q7-6qg9-cvpr", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-88q8-q42f-9ffr", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-88v7-cqm8-q5c5", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-893w-7v3p-922v", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-89m5-c33r-36hm", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-syft-2.32.0@2.32.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-89m6-69qq-wvv5", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-89vf-2fqm-2p9w", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-89xw-742m-6xqp", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-8c25-57g7-pc9r", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8c53-cphh-4p7f", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-8c83-hr79-xf92", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-8cgc-6m6q-877v", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-8cm6-wm33-pfp3", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.1@4.11.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-8cq5-wcvw-jqxp", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-8cvm-xg3w-4jw5", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-8f3x-wm75-6446", "aliases": [ "CVE-2024-52005" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fjm-5pp9-ppqx", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-8fpf-86mp-4g62", "aliases": [ "CVE-2025-9232" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fq4-p7r9-vcm5", "aliases": [ "CVE-2010-4756" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE in glibc is not considered a vulnerability by most distributions. Glibc implements glob according to POSIX standards, which do not guarantee memory safety. Network facing services should sanitize the inputs to glob, or configure resource limits." }, { "vulnerability": { "name": "MINI-8fqv-6r2h-gm8m", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-8fwh-hf73-vm6g", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-8g5w-p3gc-63f3", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-8gc2-p44g-2423", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-8ghg-cp24-g6r4", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.2@4.11.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-8gj9-8g26-8www", "aliases": [ "CVE-2026-4647" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4647/references" }, { "vulnerability": { "name": "MINI-8gr6-3q98-6rg3", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-8gvq-55fx-72x3", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-8jf9-f9g8-w89p", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-8jgv-fwf8-r735", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-8jhj-gx85-4p2f", "aliases": [ "CVE-2025-22869" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22869/references" }, { "vulnerability": { "name": "MINI-8jxx-gxxw-g7w3", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-git-1.1.18@1.1.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-8m2m-h9wj-r2hf", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-8m34-8gf3-h289", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.1@3.12.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-8m6p-c9rv-wpjc", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-8m7m-hfhc-v5pr", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-8mff-8j5r-3fcq", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-source-removal-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-8mgx-6c95-g4q7", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.2@3.9.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-8mhq-7r6j-45g9", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-8mjf-r92c-9p33", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-8mqg-pvx5-792p", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-8mqg-x28r-x6j9", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-8p2w-m2qm-6prw", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-8p44-mpxq-v2v9", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-8p9h-5h6v-6gj2", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-8pgf-xh6x-fm65", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-jattach-1.12.2@1.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-8pq5-vgv2-7w7x", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-8qf7-3jq4-43w3", "aliases": [ "CVE-2025-5702" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-8qpr-g6rj-m3pm", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-8qqc-rxpw-wrrr", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-8qr3-8g6p-48mj", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-8qrw-gqqx-w5m6", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-8r3c-fcmq-6c96", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-8rm9-4mpr-jmx8", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-8rqw-xhcr-jgj4", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-8v6p-h8c8-9m54", "aliases": [ "CVE-2025-8556" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-8556/references" }, { "vulnerability": { "name": "MINI-8vg5-f7hh-3hf4", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-8vwf-xpf2-75gj", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-8vxm-474f-3g69", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-8w6r-xj53-h73g", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-8w8r-chjg-w5cg", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-8wqh-8r4v-7pq6", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22872/references" }, { "vulnerability": { "name": "MINI-8wr6-266w-xv7j", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-8x92-grj3-9hc4", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-8xc7-fwhw-9q79", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-8xrm-wx97-573x", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-8xv8-vp9x-q683", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-8xvj-h38w-mj43", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-9226-cr2g-x4j3", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-922h-3c7x-32w9", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-924g-h5h6-xh84", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-92gm-cgff-4f9v", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-92p9-f3mp-9r78", "aliases": [ "CVE-2025-64329" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-64329/references" }, { "vulnerability": { "name": "MINI-92wj-mjq5-r2hh", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-9347-v744-67h7", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-936g-wwx6-5mg5", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-939j-mc62-8c4q", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-run-script-2.3.32@2.3.32-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-939w-w96h-rwqf", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.0@3.9.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-93gh-8pqx-3v5f", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-93j2-g3q9-vg6m", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-93jv-q43w-xcvv", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-93p3-q857-764r", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-93v6-55x3-gwgv", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22872/references" }, { "vulnerability": { "name": "MINI-93vf-2w7h-3m9g", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-9482-2jh4-39pv", "aliases": [ "CVE-2026-6238" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-94j9-j8gq-cv88", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-94m3-r75g-8f74", "aliases": [ "CVE-2026-31790" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-94r3-f4g7-mqjr", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-94r4-27cw-4rrc", "aliases": [ "CVE-2026-33810" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9524-vx4h-92ff", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-956j-35c9-xwqc", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-958c-2rjj-42qw", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-958r-254p-rgmw", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-95px-wmx4-2g86", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-964m-hm5q-263c", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-967w-7xfr-cpwp", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-969x-cc78-33v6", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-96gg-3m3j-98qc", "aliases": [ "CVE-2025-54410" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-54410/references" }, { "vulnerability": { "name": "MINI-96jm-2f9m-43v2", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-96p6-q8vc-grhr", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-96pm-9v4v-r4vj", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-97q6-p6j4-mpg5", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-97vp-hv9j-jfj8", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-97x2-r69q-5q57", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-98fm-vqh2-wp5m", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-98j2-mvhv-jv26", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-98vv-6rw2-jh2p", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-99cf-f3q3-f3gm", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-99h8-2vp8-c5qm", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.2@3.9.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-99w4-fg55-9q35", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.2@4.11.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-9c36-jgj8-8r65", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-start-2.5.15@2.5.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-9c3v-9c86-4p46", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-9c5j-5w47-5whx", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-9c5j-c3m4-c8rh", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-9cfc-x93p-2mjc", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-9cp5-q9jw-5375", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-9cq3-2h4v-gg7m", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-9f4q-5f4h-ch5m", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-9f6p-8c2w-8mw5", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-9f8v-vq7x-833q", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-9f9q-6xg8-fw59", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-9g29-q9qc-p4ch", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-9g3f-hpjm-9jr6", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-9ggf-h7x6-cqjj", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-9ghh-v9gf-6gh3", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-9grv-prqr-ch8x", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-9h5c-xvgf-rc44", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-9h67-8994-rpw6", "aliases": [ "CVE-2025-64506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9h87-jm24-p68w", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-9hv8-9w9r-j4w3", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-9jm9-qqwx-8h9q", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-9jr3-48rm-rfwv", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-9jv9-g3jg-r8xr", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-9jvc-fhw7-crmp", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-9jww-84c5-h529", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-9jxq-4mvp-q6g6", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-9jxv-5774-j6rg", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-9m2g-r6jx-f6cc", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-9m44-6wc6-2j5r", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-9m89-pghm-3jw2", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-9mcc-28qw-jvf8", "aliases": [ "CVE-2025-47914" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47914/references" }, { "vulnerability": { "name": "MINI-9mxf-76xj-whxh", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-start-2.5.15@2.5.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-9p35-7q6r-45c3", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-9p4w-c3j3-mj9j", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-9p5x-qp3p-2chm", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-9pc3-hjvv-jwch", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-9pch-rhjg-8cwx", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-9ph2-rvrc-qhf2", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-9pm2-3m6x-88w2", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-9pw4-4h3w-rp78", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-9q8v-46pj-67m5", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-9qqx-6pf5-wvmh", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-google-stackdriver-10.2.2@10.2.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-9r2v-2hx4-cf5q", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-9r6h-7w5j-7hmr", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-9r93-422g-wgp8", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-9rff-xrxq-xgf5", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-9rpg-6h85-gccj", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-9rvc-xj3h-56wf", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.1@5.13.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-9rxh-gv88-273q", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-9v7g-m4p2-2vc7", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-9vc5-4mwv-w2wc", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-9vgg-2xpq-pgcj", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-9vrh-jgqh-vq5q", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-9vww-8f5w-2ph6", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-9vx4-j9ww-6vvg", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-9w2r-2pm7-jvpv", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-9w3f-rvgc-fffh", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-9w5m-f95v-57hf", "aliases": [ "CVE-2024-58251" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9wf9-xff8-8fhw", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-9wv3-4j9c-jxh5", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-9ww3-m6px-6hvg", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-9wxq-4rh8-8fqg", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-9x39-f9jq-9xg5", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-9x55-3q74-h9gq", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-9x7c-882f-gc36", "aliases": [ "CVE-2019-1010022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-9x9h-6wq9-5w4m", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-9xfg-qpw8-99jf", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-9xqh-95xw-c6hq", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-c24x-9pcg-ch9v", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-c263-r3qc-j958", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-c2cj-qvcc-cgw9", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-c2r4-7rf9-6v64", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-c2wx-9r74-2rgc", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-c33h-rm25-r5cf", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-c3p8-42gc-53j4", "aliases": [ "CVE-2025-11579" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-11579/references" }, { "vulnerability": { "name": "MINI-c3qq-96f4-qxjm", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-c3qw-p333-xqxh", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-c3vh-69r6-c7mf", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-c3x8-p8j9-m5v3", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-c49g-9w6q-89fc", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-c4fj-6qrp-46wg", "aliases": [ "CVE-2025-7545" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c4g8-m6ph-jqwg", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-c4h3-v36j-448f", "aliases": [ "CVE-2025-3445" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-3445/references" }, { "vulnerability": { "name": "MINI-c4wc-h9mx-jc8p", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22870/references" }, { "vulnerability": { "name": "MINI-c553-53rg-6g7p", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-c569-wp26-f6rf", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-c5mj-562w-v72c", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-c5pw-gc33-gw37", "aliases": [ "CVE-2025-11083" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c5v7-9w9g-cx92", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-c6h7-3pvq-h6fm", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-c6pq-v8wr-xxrx", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-c6w5-mxv5-whfg", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-c6xj-ccxh-4m7x", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-c72m-ccg8-4q5p", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-c78q-cjrc-3c79", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-c7qm-j57v-c6v3", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-c828-2wxj-47fh", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-c8fm-8cvv-hwrv", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-c8g9-253g-qh3v", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-c8j3-gm67-q3jx", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-c8j4-2cxf-6xw7", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-c8v7-8fxg-wx9x", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-c929-w75p-2w88", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-c97h-9263-h2v9", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.0@4.11.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-c9mh-h966-q852", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cc3c-gw3q-phmp", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-cc8h-wqh9-734q", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-cc94-4x5q-mqv5", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-ccjv-rj5r-cw5p", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-ccm2-94vr-6rw2", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-ccrq-cqv9-rpjv", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-ccx3-27jm-7qrm", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-cf6v-5f23-rxcw", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-cf9m-5fvx-7jh2", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-cfj4-fchq-8c4v", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-cg3p-pmxx-w5fj", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cg4j-f6jx-xr9r", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-cg85-3935-6gcj", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-cg9r-m3jc-2rwg", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-cgrv-25qh-c2v4", "aliases": [ "CVE-2025-68160" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cgv5-8fr5-9gwf", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-cgvq-gv69-wqc6", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.3@3.9.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-ch27-jfw5-ch6r", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-ch4h-8vqc-x7g4", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-ch68-q8x6-3hqf", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-ch6m-93g6-jxmh", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-ch74-vw5q-8qj3", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-chqc-95vc-4354", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-chr7-34xr-7x52", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-start-2.6.14@2.6.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cj59-85fw-32vx", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-cj84-84rv-hf48", "aliases": [ "CVE-2026-45447" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cjh9-v45w-v3rc", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-cjj4-vfg3-8p63", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-cjm7-v96q-8x6r", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cm6c-g8p8-pc3x", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cmhp-m29x-qcr2", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-cmmm-vp98-cjhp", "aliases": [ "CVE-2026-5450" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cmvf-595r-6q3q", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-cp3r-rp4g-f926", "aliases": [ "CVE-2026-11824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cp43-crq6-62c2", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-cp5j-x7jj-55p3", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-cp77-f95v-2gvp", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-cp7g-fpx6-xv3x", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cp9h-76ff-qj5w", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-cpc4-vrw5-786j", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-cpcq-m9gp-4p29", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-cpqv-jgvj-pgc7", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cpwv-vcfw-q8gc", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-cpx2-mxjc-3wv3", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-cpx4-fg4j-chhc", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-cq67-89ph-f572", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-cq73-w589-ppp7", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-cq7v-wm45-4qx3", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-cq97-9wmq-59wx", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-cqm4-fw6w-56rf", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-cqvp-mwm9-hx33", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-cqvr-4x9r-6p6x", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dist-zip-5.12.2@5.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cr2m-fhww-w6rg", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-cr65-5q2r-f7r9", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-cr95-2c5g-pv5q", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-crvc-77xm-8hcf", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-cv3p-cw65-25m2", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-cv63-5rhp-6r36", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-cv73-rv8p-7ff6", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-cv87-38rc-mr48", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-cvqc-gm78-q2gw", "aliases": [ "CVE-2024-24579" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-24579/references" }, { "vulnerability": { "name": "MINI-cw9r-4f5v-hwvx", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-cwc6-93m3-3x9p", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-cwjv-qm5x-x2h4", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-cwwv-6fc6-ggx8", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-cwwv-8c22-4pfc", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-cx2g-hqr6-5h99", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-cxmw-h96x-j62g", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-cxvr-wccp-5wwp", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-f27q-crm3-mf7g", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-f34c-7xvp-23pr", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-f352-g42w-67c3", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-f354-7598-77qx", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-f37f-9c5x-vx89", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-f388-w85f-86c5", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-f38r-wwm8-pgvr", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-f3cv-2v9j-cgp2", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-f3jw-cxwr-88r2", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-f3m8-v4hf-jr2m", "aliases": [ "CVE-2025-69419" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f3mh-6chf-88mp", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-f42p-m8r7-g2jf", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-f482-6rrp-f3pm", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-f483-6f8p-f898", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-f484-xx2x-wh28", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-f4mg-fp4r-2625", "aliases": [ "CVE-2025-11579" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-11579/references" }, { "vulnerability": { "name": "MINI-f4q4-x2rx-3fjc", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-f56v-rjc3-6p9r", "aliases": [ "CVE-2026-25646" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f5w6-5mp7-m579", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-f634-rhvh-8x8f", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-f668-px32-p2gr", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-f67j-g353-8mxv", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-f69w-vc73-5h74", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-f69x-pm84-p75w", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-f6h7-r3xg-5jr5", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-f6j3-qh5q-mhpp", "aliases": [ "CVE-2026-39823" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39823/references" }, { "vulnerability": { "name": "MINI-f6p8-q7fh-4h6f", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-f723-4m9h-9pwg", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-f759-f943-r6r8", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-f79f-w77h-v668", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-f7f2-q8qw-jh4q", "aliases": [ "CVE-2024-41110" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-41110/references" }, { "vulnerability": { "name": "MINI-f822-6cjv-3cxj", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-f839-3mxc-xqc9", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-f877-356g-m7q6", "aliases": [ "CVE-2026-42499" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42499/references" }, { "vulnerability": { "name": "MINI-f8cm-6f38-2788", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-f8q3-883w-58vg", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-f997-q2mh-6rmp", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-f9c4-7wgh-x8wq", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-f9qf-9g8g-pmm5", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-f9wq-jqvr-xpgx", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-f9xf-5vv8-3fqm", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-f9xj-9f5r-7p4g", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-fc2v-w8qj-924p", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-fc4g-qr4g-x8f5", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-fc9r-2xjx-4j59", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-fc9x-9qmp-4mjj", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-fccq-mm4p-fmrj", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-fcfx-pfjr-mqrr", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-fch9-fg92-2h7h", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-fcrm-635h-5m5x", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-fcwj-2m6h-hqq9", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-ff68-3x3j-g2xf", "aliases": [ "CVE-2026-25934" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25934/references" }, { "vulnerability": { "name": "MINI-ff8f-4qp2-cp8f", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-ff9f-j3wx-6mcp", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-ffcv-vp5q-84gj", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-ffhf-26qg-xw4j", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-ffj5-r8pv-c32f", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-ffmv-349v-phqq", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-ffrr-q7g2-6r8v", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-ffxq-xc45-4294", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-fg45-x759-w8pp", "aliases": [ "CVE-2026-6253" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fg78-366f-4g26", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-fghq-cxwh-55f9", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-fgj7-6mw2-f4h8", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-fgjh-8j72-49xp", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-fgvw-hhj3-qfgr", "aliases": [ "CVE-2025-8556" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-8556/references" }, { "vulnerability": { "name": "MINI-fh3r-3wcq-chch", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-fh95-8cxf-87ph", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-upx-4.1.3@4.1.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-fhc4-fch9-487g", "aliases": [ "CVE-2013-2617" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-fhhf-35m7-3qgm", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-fhqg-6jqx-85v6", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-fj2p-whjg-36hp", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-fj46-q3r5-3xf8", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-fj4h-768q-6qmc", "aliases": [ "CVE-2026-39826" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39826/references" }, { "vulnerability": { "name": "MINI-fjgj-mr9m-86cv", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-fjmr-44g5-3rjg", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-fm8q-82v8-mv4q", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-fmm3-5ghq-h926", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-fmp9-vpw6-vj9w", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-fmpx-v2gg-p6xm", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-fmrx-ww7v-hcj6", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-fpg6-cr68-wcfr", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-fpg6-xqf7-j5c8", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-fph9-r82g-rj9w", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-fppj-v6qf-vff4", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-fq45-xpvj-qcfx", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-fq58-wf23-cvfh", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-fq76-4wwp-vfrp", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-fqg7-f43r-v995", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-fqgg-x294-f74j", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-fqv6-2p82-qg4g", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-fqxx-ph6h-7mhr", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-fr6j-3j9q-5vmq", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-fr9v-4728-p9gh", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-frcv-7m27-r9h8", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-frh2-prxv-49vw", "aliases": [ "CVE-2025-54410" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-54410/references" }, { "vulnerability": { "name": "MINI-frv4-3xpj-3rr2", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-fv9f-qjq4-68vh", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-fvw9-jfq3-xwvq", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-fw3g-387r-6824", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-fw3v-86jc-qgh8", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-fw6j-p2m3-gxvm", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-fw8g-h9x8-q8xc", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-fw8v-ff8x-446x", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-fwf3-39q9-6r2m", "aliases": [ "CVE-2026-7009" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fwfc-g7h4-9r64", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-fwfw-pwcm-j984", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-fxfh-6j5g-hfm4", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-fxgv-6mhx-8966", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-fxm9-pf53-h828", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-g22j-3p83-hwrr", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-g298-xv7c-qgvh", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-g2g3-f2qx-x2pf", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-g2gg-4xcg-74hw", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-g2gr-hqm7-372w", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-g2v9-6998-mmpm", "aliases": [ "CVE-2026-28387" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g328-fx7p-7hrj", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-g344-492g-77hh", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-g363-2g87-cgvm", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-g3hv-qjvc-g3fg", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-g3jj-39fx-652g", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-g3m4-92cj-qhrw", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-g3rp-9rg4-vjcv", "aliases": [ "CVE-2026-22796" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g3vg-gxpw-m7jh", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-g3xx-hqjm-65gw", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-g45w-jr84-g7jg", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-g469-38v4-c6w2", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-g474-q5qf-mf4j", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-g478-x9q2-66rc", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-g48f-x5xj-3933", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-g4fj-m65m-vpjx", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-g4mr-ggp9-f64c", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-g4p9-3qjm-37q5", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-g4rj-33xj-g638", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-g4xc-3734-qmjx", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-g54r-xx35-w3g6", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-g5cw-45x2-846r", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-g5h3-j5g5-xf2g", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-g5j6-6hfw-grgq", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-g5q5-xpm6-vcq9", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-g5q9-x594-ghj9", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-g5qp-5x36-m864", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.1@4.12.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-g5qq-r2xp-j8gf", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-g5w8-gj5x-25cv", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-g674-g43v-j247", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-g6vw-hfxh-r957", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-g6w4-h59c-px78", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-g76f-22r6-pq2x", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-g7cq-m242-7fr3", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-g7fr-w564-xgg7", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-g7wm-7cmp-9cfw", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-g7ww-3wh8-3ppj", "aliases": [ "CVE-2025-11579" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-11579/references" }, { "vulnerability": { "name": "MINI-g8fr-vvqv-8rxq", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-g8h5-ccqh-m3p5", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-g8p4-p92q-q3j8", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-g942-5mx9-h4qm", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-g94c-h6w3-4qpw", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-g983-w2jj-fc57", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-g998-858p-825x", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-g9c6-7g6w-7x9g", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-gcgh-2rqq-jcx6", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-gcpr-qxhx-jg9p", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-gf34-q5p3-pmw5", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-gf37-2c52-2gm2", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-gf94-58qc-jqhv", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-gffp-32hr-crff", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.2@5.13.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-gfgf-vxqv-65j9", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.2@4.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-gfm2-8832-748p", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-gfw4-x64m-5hmp", "aliases": [ "CVE-2026-22801" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gg48-j42w-j3mc", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-gg84-vm87-v4hf", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-ggfp-7j8c-x4cg", "aliases": [ "CVE-2024-45338" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-45338/references" }, { "vulnerability": { "name": "MINI-ggj7-j32c-9m87", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-ggqv-3w5g-76qx", "aliases": [ "CVE-2026-4437" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ggwv-r8mw-9cpr", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-gh3g-74j7-c958", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-gh3w-f72c-v4rc", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-ghjf-qcrg-xxfw", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-ghv2-cjv5-hf89", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-gj3c-q7cx-v47g", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-gj55-xj67-4q7r", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-gj5w-q5ff-8c32", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.0@5.13.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-gj63-9xq5-xhf9", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-gj77-6x9p-79pp", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-gj9r-4w9p-f368", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-gjf8-mv8x-x6v4", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22870/references" }, { "vulnerability": { "name": "MINI-gjm3-c2j2-j62m", "aliases": [ "CVE-2026-1229" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-1229/references" }, { "vulnerability": { "name": "MINI-gjm5-5wfh-p7wf", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-gmr9-9qj8-q7pg", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22872/references" }, { "vulnerability": { "name": "MINI-gmw5-9c2q-3q4j", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-gp2q-5w73-2m57", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.3@3.9.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-gp95-g9wq-5vvq", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-gpcf-p6g4-jrqj", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-gpp9-7f46-x56p", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-gpqg-85fp-hr7j", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-gq4x-m265-2qrp", "aliases": [ "CVE-2026-31789" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gqg2-mfxg-mq75", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-gqr8-c3hh-5pw2", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-gr4h-25wv-jxqh", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-grhv-vj4m-wgfq", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-grj5-wm36-6q35", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-grp9-2c4x-gf72", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-gv5v-p2mr-jfj4", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-gvqg-6pmx-56v5", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-gw34-5p6c-4cvc", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-gw63-8fp3-xh2v", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-gw7f-hf3v-wj34", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-gwg4-q9vp-fw2f", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-gx2v-w485-6m67", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-gx4w-7743-qx2q", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.0@3.9.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-gxc4-3x7j-fqp2", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.1@4.11.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-h24w-7vr6-f528", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-h2gr-c5v4-3m98", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-h2pf-vxm6-88xf", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-h2qg-24w8-5hj5", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-h2qv-x5fw-c2cr", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-h2r9-jw6v-pmh2", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22870/references" }, { "vulnerability": { "name": "MINI-h3jr-qf8w-2hmr", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-h3mr-f87g-8qf5", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-h3pm-c9m9-m3qv", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-h457-ccqr-cxg5", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-h45w-6mr3-3gxq", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-h4cc-r8q4-6w5g", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-h52j-v5vx-9q4h", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-h553-7f44-r4h5", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-h5cg-27mg-25mh", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-h5fj-q46w-78fx", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-h652-5748-vc2x", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-h67j-94gp-xccc", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-h69m-mxjf-3q8q", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-h74r-gfh2-42q9", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-h752-7xr5-vjfc", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-h7h6-gqx8-m68f", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-h7mj-4j54-hvc5", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-h7pf-pj96-cvhc", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-h7wj-4xcv-4xv3", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-h849-h5p9-89h9", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-git-1.1.18@1.1.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-h86j-p3w4-fqpf", "aliases": [ "CVE-2026-11822" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h887-c27r-w226", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-h8c6-q3w9-wp3q", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-h8q5-v36x-p7gg", "aliases": [ "CVE-2025-9230" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h8x3-457r-fp54", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-h9cg-6r39-jqfx", "aliases": [ "CVE-2025-11579" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-11579/references" }, { "vulnerability": { "name": "MINI-h9qj-xfcm-hhc6", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-hc9r-j9f2-m623", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-hc9w-x8jw-qc75", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-hcrf-gvg9-xg6j", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-hcrj-h3wg-3xcx", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-hcww-h6hf-rf8w", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-hcxf-926w-6g9q", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-hf2x-r76f-q4pj", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-hf33-vjrw-j9jv", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-hf3g-jv59-3qjm", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-hf5h-2qhh-w53m", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-hf6x-vr59-f57x", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-hfpj-q8m2-4rxj", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-hg3q-87f7-4w8f", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-hg86-h6qc-qg5h", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-hg9h-8995-5p2h", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-hgjh-47hp-6q46", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-hgp2-2w2h-cvj2", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-hgxg-47gg-5rrm", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-hh5c-4863-5cpg", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-hhcr-pr5j-7rvq", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-hhfw-64mw-x5rx", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-hhgh-8222-m332", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-hhj8-924h-4xj9", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-hhjq-9957-2wmv", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-hhrc-8c9p-j64w", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-hhrj-462p-4pcf", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-hhvx-pphc-2793", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-hj2f-8c38-8m53", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-hj7w-w42p-g9f2", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-hjgw-c3j3-vxc6", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-hjhf-782x-3cf6", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-hjjc-32xc-fqpf", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-hjm3-hj3g-jp7h", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-hjwx-3jfh-h9xp", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-hm34-fg3h-qqjw", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-hm9r-248x-h55q", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-hmc5-4944-mmr7", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-hmq5-j88j-4j55", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-hmv4-h8rp-jfpp", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-hmxq-6cxv-57xr", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-hp2m-p3mf-256m", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-hp86-vvx5-g96m", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-hp88-rhjh-v93j", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-hpf6-8ghj-m8vr", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-hpm9-2c28-2qw2", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-java-memory-assistant-1.10.2@1.10.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-hq35-3j9w-j54p", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-hq78-qw4c-p8pc", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-hq8v-9qjw-w26p", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-hqhx-rhqr-cr4j", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-hqvf-mh6q-8wrw", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-hqx8-xhgh-xccp", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-hqx9-36r8-cvpw", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-hr6h-vq9v-cfp7", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-hr83-6wpq-r5h8", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-hr93-j8xf-vc6q", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-hr9p-8rhg-74cq", "aliases": [ "CVE-2026-42766" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrc3-65r2-992h", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-hrg5-74gw-jchj", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-hrh5-25q3-664v", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-hrjr-5p8j-mcxp", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-hrrc-m783-vj3g", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-hv3m-wc7f-4562", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-hvcf-6xv8-5gv2", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-hvgh-p3wg-mjpm", "aliases": [ "CVE-2025-1153" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hvp5-gj2f-fm32", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-hvq5-64g5-w5gx", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-hvrm-fg87-3wx4", "aliases": [ "CVE-2026-45446" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hvww-48h2-6chp", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-hwh9-jwj5-c272", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-hwjj-mj9h-qh5g", "aliases": [ "CVE-2026-27171" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" }, { "@id": "pkg:apk/minimos/zlib-dev@1.3.2-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hwm5-mfhm-cpmv", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-hwv2-c28h-cmfx", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-hx29-gxff-wrvh", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-hx33-55h7-2q94", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-hx46-483q-mf6g", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-hx47-mw98-g5vh", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-hx7f-wh59-6gh5", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-hxcj-66xj-7x9x", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-hxm5-6rg3-3gg2", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-hxmm-m99g-3mxg", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-hxpg-m58r-j5ph", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-j2fx-5qrf-f57c", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-j2h9-w953-mw2r", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-j2hx-qphv-77r3", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.2@3.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-j2xg-wjfm-cv5c", "aliases": [ "CVE-2026-23865" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/freetype@2.14.3-r0" }, { "@id": "pkg:apk/minimos/freetype-dev@2.14.3-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j348-pqrp-77w5", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-j39m-qg9x-f9pq", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-j3m4-w7rm-wg83", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-j3p9-98cw-96r3", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-j3rm-8x68-crcx", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-j3xx-x7vq-r6j9", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-j4h4-56c7-rv7f", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-j4hh-gq4p-4c44", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-j4hw-c5g7-9gm3", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-j4pp-cxg4-p4fv", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-j4w4-v79m-x846", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-j53j-532g-vf6q", "aliases": [ "CVE-2026-27135" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libnghttp2-14@1.69.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j62m-pfx9-9rj9", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.0@4.11.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-j62r-rq5q-58vc", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-j6jg-c9xw-wpp5", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-j6m5-ff43-4rmp", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-j6mp-9j2c-5478", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-j74p-577c-mjwf", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-google-stackdriver-10.2.2@10.2.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-j756-f2p6-8rvv", "aliases": [ "CVE-2025-64329" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-64329/references" }, { "vulnerability": { "name": "MINI-j77x-h9gc-5cg8", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-j79c-78wr-c284", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-j7hh-qcj6-r5gx", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-j7mf-pwqj-6h4r", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-j7pw-fmj2-cc3j", "aliases": [ "CVE-2026-27140" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j7r5-qfpv-pqwp", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.2@3.9.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-j7rr-qvx6-8r2h", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-j7wq-f9cm-ph83", "aliases": [ "CVE-2026-28389" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j7wr-pmgh-vqch", "aliases": [ "CVE-2025-47913" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47913/references" }, { "vulnerability": { "name": "MINI-j8c7-478v-gmr8", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-j8cq-r9rm-5jfx", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-j8gh-rqf2-qfhp", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-j8h7-j8gw-mh2j", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-j933-65w3-xwgm", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-j952-fqw8-frc8", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-j963-7qvv-c52x", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-j99g-x3m2-h385", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-j9j8-223j-3hh2", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-j9j8-6rxv-gr8q", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.1@4.11.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-jc2w-6c77-3hf6", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-jc3q-5396-27pv", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-jc95-7wpq-q4j8", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-jc9v-mp77-359h", "aliases": [ "CVE-2026-6844" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Not considered as a security issue by the maintainers" }, { "vulnerability": { "name": "MINI-jcc6-g9mp-xcr2", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-jcj5-w32v-p9cv", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-jcph-pc3q-785x", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-jcr8-pjvv-r3wh", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-jcwr-cjwf-h928", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-jcxr-xvw3-rjh6", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-jf4m-f88m-6xpm", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-jf74-crr3-wm8m", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-jf79-wxpm-37j6", "aliases": [ "CVE-2024-40635" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-40635/references" }, { "vulnerability": { "name": "MINI-jfgv-5699-xr6f", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-jfgw-xj4q-vqhj", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-jfhh-p8p3-p43f", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.3@3.9.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-jg6r-xwxr-wcrq", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-jghw-g2qv-x2cx", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-jgv4-9gj5-483j", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-jh9p-23r4-r83r", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-jhm7-35xr-hg5h", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-jj2f-vqx8-83w4", "aliases": [ "CVE-2026-39836" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39836/references" }, { "vulnerability": { "name": "MINI-jj44-28cq-83j4", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-jj7r-2g52-f7gp", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-jj8v-cfjj-jw5r", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-jjg8-62pp-cqmc", "aliases": [ "CVE-2025-69649" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jm36-jghp-5p42", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-jm44-f3x4-62cq", "aliases": [ "CVE-2026-22795" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jm64-hh38-hj26", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-jmmw-4597-rmjp", "aliases": [ "CVE-2019-1010023" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-jmr8-jfjm-wq5w", "aliases": [ "CVE-2025-58181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58181/references" }, { "vulnerability": { "name": "MINI-jmw3-6jww-ccq4", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-jp3v-w8q4-v4pm", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-jpc9-v4cc-hggm", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-jpfv-4qf8-3f3q", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-jq6w-gmpm-2vh9", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-jqhh-xwqh-r657", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.0@5.13.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-jqjc-xxwj-896r", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-jqm2-pr6m-wrwq", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-jqmx-248m-5277", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-jqpm-2hw8-f85v", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-jqvf-g328-wv3m", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-jqw4-mqvc-x66g", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-jr33-3j67-h8pr", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-jr3h-qr8j-37x7", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-run-script-2.3.32@2.3.32-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-jrcv-wx8x-f94v", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-jrh5-5v3h-q39v", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-jrhw-p3w9-8w4c", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-jrj9-cpwv-fcpr", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-jrwr-27gf-vgqw", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-jrxp-83w6-jg73", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-azure-application-insights-6.2.3@6.2.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-jv57-8vcc-5fp5", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-jvh5-7q77-h876", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-jvhx-554q-6qgq", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-jvm8-c8v6-w3w4", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-jvp7-f9cf-2cvf", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-jvrw-fhmp-224w", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-jvwj-j6jf-22j8", "aliases": [ "CVE-2025-54410" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-54410/references" }, { "vulnerability": { "name": "MINI-jw43-5hx9-wwv3", "aliases": [ "CVE-2026-28390" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jw48-mqrh-rjfj", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-jw7f-fq57-9vvw", "aliases": [ "CVE-2025-5245" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jwcp-gf6j-7c66", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-jwf3-vv6x-7cmx", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-jwhx-qq4h-h58m", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-jwx6-8769-gg3w", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-jx46-vc58-7v88", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-jx5j-w7ww-cggx", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-jxmp-hmgx-r42r", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-jxrj-rv3r-3vwq", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-jxv6-pmf7-v585", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-m266-h5m8-vchw", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22870/references" }, { "vulnerability": { "name": "MINI-m2g3-g8q5-hwrj", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-m2gx-6ccf-6mmq", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-m2p6-3crr-rqmh", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-m2qv-j5mr-p6qm", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-m2v5-5837-73hm", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-m2w5-vhr3-hf86", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-m329-8732-cmhh", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-m32f-jchv-6wq6", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-m356-vhwj-3663", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-m36q-xphv-g4w5", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-m37h-56cq-7p99", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22872/references" }, { "vulnerability": { "name": "MINI-m39m-f6xg-r245", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-start-2.4.15@2.4.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-m3p5-vm28-jmr7", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-m3px-97c6-49c4", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-m3rp-3rgw-j624", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-datadog-6.9.2@6.9.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-m3w3-vxf7-rx8h", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-m44j-wgq9-rmhw", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-m489-gv23-qrhg", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-m4c7-p6m8-cfpf", "aliases": [ "CVE-2026-32281" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m4g7-5pjr-3h22", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-m4hw-6chc-h3q7", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-m4rq-gh8p-22g5", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-m4wj-9rfw-2vfv", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-m533-cfrx-gvw4", "aliases": [ "CVE-2025-11082" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m53x-ww9p-fmc6", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-m55w-rrqg-chpw", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-m56j-5fxf-4v86", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-m5j6-52xc-97cp", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-m5pq-fm4f-xfc4", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-m5rr-mr9g-f74f", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-m63c-7m6q-fxw9", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-m67x-57hj-chgx", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-m69v-m343-7gc6", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-m6vw-8p53-j5j2", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-m6w3-rpcp-fqcg", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-m73q-j667-mcwj", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-m77v-42vw-qc8x", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-m7cw-jvf4-8vv7", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-m7f5-5j77-qfj8", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-m7fj-2pf2-88jg", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-m7m3-6g2r-pfh5", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-m7rm-qqx9-7h3v", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-m7w6-4xxf-jpm6", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-m7x6-8953-jm44", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-m84j-xj2q-3ppp", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22872/references" }, { "vulnerability": { "name": "MINI-m859-x9xc-3mg5", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-m87p-4mfc-rm3g", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-m8ch-pmq9-m9fm", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-m92v-5c3q-m6qv", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-m9gj-2xrm-cw97", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-m9p9-3p28-m3j9", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-m9qg-4c7v-475f", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-mc36-6cfw-gr26", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-mc3q-v467-vpcp", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-mc9j-x3m9-mwjv", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-mf24-mg6x-mg4m", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-mf2m-qjw8-j9xj", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-mf3f-wx9j-r8h8", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-mf76-r8gr-fpg4", "aliases": [ "CVE-2025-47914" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47914/references" }, { "vulnerability": { "name": "MINI-mfgg-pv85-786c", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-mfvm-h8wx-px9m", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-mg23-ff75-554p", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-mg29-8mm6-5mf9", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-mg8x-mv8v-j3jf", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-mgg7-3h4r-wm4m", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-mgmc-447f-938f", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-mh3q-frjc-qgv9", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-mh5f-2c74-gpp8", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-mh5w-rgcj-phjf", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-mh6r-6wxj-533x", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-mjrv-3wwq-vg9p", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-mjrv-hchp-2677", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-mm45-gr69-mc92", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-mm6v-mg5c-w3gq", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-mmfg-38m3-q7j2", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-mmhf-7px2-3hcf", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-mmhh-72jw-286c", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-mmwh-9fcm-hghc", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-mmwx-rgx2-64cx", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-mp5q-gv8h-4jjw", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-mp84-wvjg-vf4r", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-mr6q-g66r-8vh5", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-mrh7-hf2j-8956", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-mrj8-8fw4-m4q2", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-mrv7-3h6j-mhv8", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-mv28-j7vj-3p94", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-mv42-xjf3-4h4c", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-mv4c-x984-3qx5", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-mv6g-j494-8px5", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-java-memory-assistant-1.10.2@1.10.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-mvh6-64xm-2p98", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-mvqw-hchq-4rp4", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-mw3m-vmqf-mph6", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-mw87-vp7g-cxp2", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-mwc4-5p86-jh83", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-mwh2-2fc5-9fh4", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-mwx3-9wcw-ff2q", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-mx2j-p593-f9wm", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-mx3c-4q5r-vc7g", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-mx52-xxg2-8prh", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-mx76-93q7-cg76", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-mx8j-479w-5w7p", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-mxgf-c62w-8pv4", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-p244-h7j4-366w", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-p25r-pq54-2q4w", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-p286-c44v-pjpx", "aliases": [ "CVE-2026-7383" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p28v-8x9f-3wg9", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-p2p2-fqfw-m35p", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-p2p6-gf49-585w", "aliases": [ "CVE-2026-32282" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p2xq-xrcf-5g5f", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-p35j-49c7-6ph7", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.0@5.13.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-p3fw-9w7v-cr2j", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-p449-wg98-4mm9", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-source-removal-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-p48c-w53w-jc98", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-p4hp-5c44-jm57", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-jattach-1.12.2@1.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-p4hv-63jw-cxgq", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-spring-boot-5.36.2@5.36.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-p4jm-65v6-928g", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-p4p4-xvj6-phm4", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-p4rp-6ff4-cr24", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-p4v2-qp4r-c3mq", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-p4vm-rmhm-6c9g", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-p4vv-fv7q-fxrf", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-p4wh-7hcr-5w5v", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-p578-78hm-crgr", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-p57w-46gf-p5j7", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-p5v7-ccqf-7p4q", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-p628-v4mr-ppxg", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-p6f9-76ff-f2w8", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-p6pw-4fc8-m578", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-p6qj-rgf6-4f4p", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-p6xg-9xqj-2xq4", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-p6xv-g5m6-j72q", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-p72f-48j3-c832", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-p778-cc6p-p35j", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-p7gx-8pc7-rfmm", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-p7jv-9gc3-48h8", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-p89m-wf27-cqp4", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-p8p5-ch49-8fv8", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-p8v4-436h-xxgh", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-p8w5-ch2m-9q2f", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-pc62-9c8c-7cgp", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-pcqg-qw2w-rxc6", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-pf25-frpq-549g", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-pf35-93f6-xgj9", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-pf99-6x43-qv2v", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-pfgj-mwrh-9xm5", "aliases": [ "CVE-2025-11839" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pg4q-23f7-3p68", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-pg6f-xx77-rvjc", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-pgjq-3r28-fxq8", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-pgr4-4f5h-w5mf", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-pgr8-vmhm-jmjg", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22872/references" }, { "vulnerability": { "name": "MINI-pgrm-r23h-q7p3", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-ph45-3wqh-5mg9", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-ph67-276j-75fv", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-ph9h-965q-9pxr", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-ph9v-fxvp-wjp7", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-phc3-7qpg-76g2", "aliases": [ "CVE-2025-15281" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-phf9-673p-294x", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-phgv-x8rh-h3g4", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-phjx-r5rw-5cr7", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-phjx-x8j7-94x2", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.2@3.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-phpp-9jr4-hcrj", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-phvh-7f65-mrc3", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-pj53-wvq2-xvjr", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-pj7x-pp2g-wr32", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-pm27-v8xv-8f3p", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-pmmw-3h8c-g665", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-pp3m-m38g-c4gp", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-pp62-27w6-9ww4", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-pp88-79fw-hvcj", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-ppqw-7g72-g6mc", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-ppvx-fq59-w5fg", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-pqp6-82rj-wf49", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-pqrj-r9p9-cwpm", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-pqww-cmrf-2wr8", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-pr2f-48j2-qr5j", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-pr9c-2v5q-34m2", "aliases": [ "CVE-2025-5745" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-prcg-vjv4-q6q2", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-prfh-xfww-h3gj", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-prfq-hvrx-9pgf", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-prgf-jc7c-727g", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-prh5-hm36-p764", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-prjg-fr59-4hpm", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-prph-2c56-3gwx", "aliases": [ "CVE-2025-22869" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22869/references" }, { "vulnerability": { "name": "MINI-pw2f-2qc7-r8jw", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-pw43-864q-pj3w", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-pw4m-g964-pvr9", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-pw5r-p58m-c472", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-pw6g-q365-hf4f", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-pw74-wh35-5mrg", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-pw8g-qprm-9wf2", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-pwg7-wr3g-hc98", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-pwhj-ccgx-vp8g", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-pwp3-j4cr-w7wf", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-pwq8-hv2x-jxg3", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-pww5-pxrm-w24v", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-pwx9-x8p5-6qjr", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-px23-x4g8-qqcw", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.0@3.12.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-q23q-5xj9-mr6g", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-q25f-rjpf-r9gj", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.3@3.9.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-q2g3-gqq5-6xj4", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-q2hm-4ggw-9m3r", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-q37v-32h4-pq7v", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-q3m3-hp37-mwrc", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-q3m9-cm85-xqmp", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-q3mp-gqfr-vxxc", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-q3r3-qjh9-xhfj", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-q3x7-944c-m42m", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-q42x-vx8h-qvxr", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-upx-4.1.3@4.1.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-q462-r6wg-5fvx", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-q4fx-q9fc-7wv5", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-q4j7-fq6p-vp3w", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-q4r7-2638-94pw", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-q4xw-f28h-5563", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-q569-g43p-c4wf", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dist-zip-5.12.2@5.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-q63j-6hf6-2w8v", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-q6c7-88p6-5v5v", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-q6f5-mf5c-644h", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.1@4.12.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-q6mv-fqgc-cjrv", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-q6pf-4mvh-fp6c", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-q6qm-9vf3-3qrm", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-q73v-9jj6-7672", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-q747-gmm5-424x", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-q76g-g2fx-g9jp", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-q7m9-x3xf-vff3", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.0@3.12.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-q7mm-8jmg-gffg", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-q7mm-j86x-5q87", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-q7pv-hhfw-v3gg", "aliases": [ "CVE-2026-1229" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-1229/references" }, { "vulnerability": { "name": "MINI-q7w7-79qx-372v", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-q7xx-35p6-f278", "aliases": [ "CVE-2026-32289" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q858-6c6f-vg8w", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-q86x-4f29-q5jr", "aliases": [ "CVE-2025-58050" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpcre2-8-0@10.47-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q889-g7vx-22cm", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-q88c-qqg4-f7v5", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-q8f8-26hx-4fv3", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-q8g9-76w8-4gj9", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-q8mx-qpwm-jj42", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-q8pr-c58g-h6vv", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-q8rv-j9c4-vjc7", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-q8v4-8v6h-vmj6", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-q8x5-6qf5-82xv", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-q92j-pg79-g69h", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-q945-9xq7-j9h3", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-q949-mf84-3mcp", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-q967-v5fm-vqhh", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.0@4.12.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-q9c4-qj6w-hc8j", "aliases": [ "CVE-2025-8556" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-8556/references" }, { "vulnerability": { "name": "MINI-q9g4-472j-p8q6", "aliases": [ "CVE-2025-58181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58181/references" }, { "vulnerability": { "name": "MINI-q9jx-7w53-g6gf", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.2@4.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-qc9v-cqhx-rpfm", "aliases": [ "CVE-2025-11840" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qcfr-vjmr-2xw2", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-qcr9-crc6-mp62", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-qf8p-q49h-fjmq", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-qfpp-6g3x-4rm7", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-qfqh-cgqg-3jw6", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-qg2m-j9xj-8992", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-qg3x-57m7-3m59", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-qgfr-j9g6-3hqg", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-qgmm-rm55-45x2", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-qgpf-hv99-xcph", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-qgv4-8fjx-5x99", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-qh3h-387f-72cj", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-qj32-xphp-54g7", "aliases": [ "CVE-2024-0406" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-0406/references" }, { "vulnerability": { "name": "MINI-qj4f-xc52-q5j7", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-qj5g-j8qx-p265", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-qj5r-hpq2-2j6r", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-qjjv-qwwg-wq6m", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-qjm7-2722-hv9f", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-qm5v-r2v3-pxm6", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-qm68-gq7m-65fw", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-qmv4-xq35-992f", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-qpp9-vr7f-cxqw", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-qpq3-35hm-pgr2", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-qpvh-h823-grg5", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-qpw8-hvw9-4p32", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-qq4w-5jcq-25fc", "aliases": [ "CVE-2025-11579" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-11579/references" }, { "vulnerability": { "name": "MINI-qqfg-7fx3-hf7p", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-python-start-0.15.16@0.15.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-qqg8-m28r-9p84", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-qr54-88fc-5wgm", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-qr8f-655f-fx4c", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-qr8g-fpjg-m75j", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-qrf3-46xm-4gr9", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-qrg7-pgwg-qrcw", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-qrjp-778f-x4jg", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-qrpx-mc29-x6vq", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-qrqh-96g3-rc3j", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-python-start-0.15.16@0.15.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-qrr6-5xfp-7857", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-qrrm-6f63-q74j", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-qrxg-vmg7-5539", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-qv3p-h6p6-7vh8", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-qv63-pf34-m4cx", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-qv78-m3g9-c6rj", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-qvg6-v28g-hq3c", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-qvhx-55p4-cqqp", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-qvv8-8rf3-mqpw", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-qw23-gx6c-pggp", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-qw33-jfhj-2jc4", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-qw54-wqmx-fcc2", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-qwff-mxjp-7h78", "aliases": [ "CVE-2026-25934" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25934/references" }, { "vulnerability": { "name": "MINI-qwgf-vxcv-vg4m", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-qwjf-f3gv-f36g", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-qwqw-9x3c-3937", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-qwv2-3g84-f95m", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-qx24-wc73-6h39", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-qx52-mhj3-2r42", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-qxf9-7xqp-f3gw", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-qxj2-qh9c-mxfm", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-qxm4-2438-767r", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-r297-9r3c-mpxp", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-r326-ww6f-v769", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-r335-prjg-q777", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-r338-6478-3rm5", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-r35r-g33x-922p", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-r3f9-fjfj-97xr", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-r3m5-92g4-hmwp", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-r3vh-2754-gh3r", "aliases": [ "CVE-2025-11494" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r48m-3hpp-wgq3", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-r4m2-6xmx-fpxv", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-r553-7wc7-3xrj", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-r574-v89g-98mc", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-r58c-wg36-32rr", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-r5j2-qxrh-wfxj", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-r5x8-hhfx-4867", "aliases": [ "CVE-2019-1010024" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-r638-82h3-7cvc", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-r644-wv54-mqg7", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-r652-5fvr-mpqc", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-r6cx-ggg4-x34j", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-r6hf-484r-r95w", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-datadog-6.9.2@6.9.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-r6pq-567v-7r7m", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-r6qh-c4px-w4x6", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-r6x4-pprp-2x44", "aliases": [ "CVE-2025-0840" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r75w-85wr-28rx", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-r79q-696r-6w4m", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-r79w-xcx2-v89j", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-r7jc-8hv8-pv8p", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-r82v-vgx7-hmr7", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dist-zip-5.12.2@5.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-r86c-6r24-5jpr", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-r8h6-hr3c-rvp9", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-r8hm-8774-xc33", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-r8p5-q8rm-64xp", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-r8w7-75x9-69qm", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-r934-p945-xcpv", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-r93v-5v58-993x", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-r946-q775-c747", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-r976-prc4-rfj9", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-r9cr-w4cq-7r36", "aliases": [ "CVE-2026-3442" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r9h4-3v2r-p4h4", "aliases": [ "CVE-2026-25934" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25934/references" }, { "vulnerability": { "name": "MINI-r9hp-f8mh-hf6q", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-r9pr-m9m6-7gc6", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-r9v7-cq5q-87gw", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-rc2h-q7wx-fvh9", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-rc3p-rc6x-mf9m", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-rc5w-649j-9jg5", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-rc87-mgmr-cqwv", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-rc8c-77x4-26xf", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-rc8p-hmr8-9v94", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-rccr-mcm9-wqvx", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-rcxw-gqrj-q8g9", "aliases": [ "CVE-2024-25621" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-25621/references" }, { "vulnerability": { "name": "MINI-rf72-cmw9-g66x", "aliases": [ "CVE-2026-5545" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rf92-p958-crgm", "aliases": [ "CVE-2026-32280" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rfh7-4gv9-95pg", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-rfq2-m5rp-884p", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-rfqp-565m-p72g", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-rfqr-4vq4-xgf2", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-azure-application-insights-6.2.3@6.2.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-rg27-hf7r-j273", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41568/references" }, { "vulnerability": { "name": "MINI-rg2f-3vgq-9m5j", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-rg3v-3wv8-fxgc", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-rg73-6f5r-q69h", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-rg8m-mh23-q48j", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-rg8x-6r49-rxfx", "aliases": [ "CVE-2026-39825" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39825/references" }, { "vulnerability": { "name": "MINI-rgc6-gfqm-869q", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-rgg5-g3jx-73r9", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-rgj3-qvhp-gw7q", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-rgw6-m9rq-wr8j", "aliases": [ "CVE-2026-0915" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rh2m-43mp-5vmp", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-rh4q-hv72-65w8", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-rh57-933c-37xm", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-rh5f-mpjr-9v2c", "aliases": [ "CVE-2025-69646" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rh8w-268c-g6vm", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-rhxp-h44w-x4p8", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-rj62-wvcf-86gx", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-rj6m-7vrc-vmqm", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-rjh4-f9hp-wm4j", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-rjj3-27v4-xq8w", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-rjvf-gwj3-88x5", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-rjw2-9q2h-wwq7", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-rjxm-vg39-v3jx", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-rm54-59v5-vpqr", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-rm6c-phh5-p2x2", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-rmqm-7hfr-rwmr", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-rpcf-hgm3-fwch", "aliases": [ "CVE-2026-5773" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpf9-4p9f-qx57", "aliases": [ "CVE-2025-8058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpq3-2pxw-g7wv", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-rpx5-qrgq-wm7h", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-rpxx-xw8p-xr67", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-rq5p-8g39-9f7c", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-rq9w-f5f8-h5hr", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.1@4.11.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-rqc9-x7x3-rp8f", "aliases": [ "CVE-2025-69648" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rqm7-gr79-x53v", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-rr22-585j-cgfv", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-rr3h-pq8f-fh5q", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-rr82-fgx3-x9ph", "aliases": [ "CVE-2022-45142" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/heimdal-libs@7.8.0-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Minimus initial Heimdal package version 7.8.0-r0 was not vulnerable for CVE-2022-45142" }, { "vulnerability": { "name": "MINI-rr8r-h4g7-f9v7", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-rr9x-8788-jq78", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.2@3.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-rrjq-x6h2-qv82", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-jattach-1.12.2@1.12.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-rv25-9wv6-j8g2", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-rv52-mmf8-hgh2", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-rv5j-g8j3-j8c9", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-rv99-5m3h-v43r", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-rvgq-3vcg-jf6f", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-rvhw-g2w9-g22m", "aliases": [ "CVE-2026-6845" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Not considered as a security issue by the maintainers" }, { "vulnerability": { "name": "MINI-rvj3-9qq2-mg76", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-rvj5-72r5-pf47", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.1@5.13.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-rvpv-3m28-j685", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-rvvv-pqcp-8jq2", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-rw5g-g464-757c", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-rw7q-gmx5-3gcx", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-rwf8-v4fp-876r", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-rwmp-4p84-x5mc", "aliases": [ "CVE-2025-5244" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rwq7-42gh-mg7x", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-rwqh-wpvq-88h5", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-rx62-r5px-m656", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-rx9v-75px-hp9g", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-rxfm-jvxr-xf3j", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-rxw4-cwh9-2mc4", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-v2j6-6jrw-mq4j", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-v2jp-j6j3-gm6g", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-start-2.4.15@2.4.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-v2r8-4hx9-h9pw", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-v2w5-8p4c-xq92", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-v3j2-qfpp-9qxp", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-v3jq-m8w5-6mfq", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-v4qx-wqj6-gc5v", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-v544-jrvh-xvh5", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-v552-8vvr-f338", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42306/references" }, { "vulnerability": { "name": "MINI-v57j-vqhh-r26p", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-v592-f53r-fhff", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-v5jg-8h8v-vwh5", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-v5pr-3cr6-r2f9", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-v5rp-2429-49fh", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-v633-8f7g-3r3c", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-v65r-mf4w-r7r6", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-v6hj-8wjq-jpx6", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-v6jr-6g8q-4cr5", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-v6p5-3j9v-c27j", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-v6p9-5cpg-74q8", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-v6rm-rgc6-95mq", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-v6w2-29v3-42c3", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-v767-x964-9r67", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-v777-vpf8-q93q", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-v77p-8g43-hm73", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-v787-8hpx-jx6r", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-v78f-hj26-8gg4", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-v7pw-xrj6-9gmm", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-v7qv-mr9x-3c9w", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-v7r6-v7gf-v9pv", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-dist-2.10.9@2.10.9-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-v86w-7676-c3x9", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-v872-8xfj-x69p", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-v883-652m-4488", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-v88x-g2gm-f7mx", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-azure-application-insights-6.2.3@6.2.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-v8jm-3294-mwhc", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-v8xh-hjq9-fh3x", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-v97q-rfww-q5p9", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-v98f-7pwv-44pj", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-v98q-v4fh-g69x", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-v9qp-g62x-5gmm", "aliases": [ "CVE-2026-4660" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4660/references" }, { "vulnerability": { "name": "MINI-v9qr-c4qx-9h3f", "aliases": [ "CVE-2026-39817" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39817/references" }, { "vulnerability": { "name": "MINI-v9vc-vhhq-w9j8", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-vc26-r6fr-mpcj", "aliases": [ "CVE-2025-7546" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vc3c-pcqh-4fmj", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-vc9q-g879-w7c3", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-vcm6-9239-fc2r", "aliases": [ "CVE-2025-11495" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vcmx-vmjr-g66r", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bellsoft-liberica-11.7.1@11.7.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-vcph-mhh2-jff3", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-vcrm-86xj-hww4", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-vcv8-gx8v-3f55", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-vcxq-xr9r-mfqf", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-vf29-2wr9-2948", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-vf2h-7wc3-wgr9", "aliases": [ "CVE-2024-41110" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-41110/references" }, { "vulnerability": { "name": "MINI-vf3p-hv85-593v", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-vf5x-xqh9-48f6", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-vf6q-gv5w-vj68", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-vf7g-vqj7-2w35", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-vf94-r79x-4m48", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-vfh5-q8xm-w2qv", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-executable-jar-6.15.2@6.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-vfhv-568f-fp97", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-puma-0.4.60@0.4.60-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22870/references" }, { "vulnerability": { "name": "MINI-vfjv-74pf-px43", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-vfpf-w4jx-mv5h", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-vfph-2jfx-fcx6", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-vfvw-6q26-r8h8", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-vg29-rj6w-vrq6", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-vg2g-jffv-m9f4", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-vg3x-hrpw-4j43", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-vgcq-8jxq-2rgq", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-native-image-5.18.2@5.18.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-vgv7-f39q-c646", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-vgvc-pgpq-c3xw", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-vh2p-w535-fph6", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-vh5q-f57g-3m27", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-vh7v-347f-fwf6", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-vhq4-78vw-xjc9", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-vhwf-2p7w-j983", "aliases": [ "CVE-2024-45338" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-45338/references" }, { "vulnerability": { "name": "MINI-vj9x-pq8v-7849", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-vjfx-8xwg-7wrj", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-vjwq-g67j-jjc2", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-vjx9-gw34-54r6", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-vmj2-rgp5-jhq9", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-vmpm-h888-7qph", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-vmq9-ccjf-wgx6", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-vmr9-7m59-xp22", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-vphj-6mvg-qv2j", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-vppp-g646-47g3", "aliases": [ "CVE-2025-11414" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vpqp-qgr9-3cx5", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-python-start-0.15.16@0.15.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-vqpm-8q3q-9h4j", "aliases": [ "CVE-2025-6965" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vqvg-5mp5-99m9", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-vqx5-3cwc-pp65", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-watchexec-3.9.0@3.9.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-vr2m-426x-h37p", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-vr5j-qmvj-7g4w", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-vrmw-p3v9-gg2h", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-vrr3-j6mh-w684", "aliases": [ "CVE-2026-50195" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-50195/references" }, { "vulnerability": { "name": "MINI-vv9p-q45w-3qm8", "aliases": [ "CVE-2026-4046" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-dev@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-db@2.43-r4" }, { "@id": "pkg:apk/minimos/nss-hesiod@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vvmw-9xc5-7v2v", "aliases": [ "CVE-2026-32288" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vvvf-pxmq-wwhv", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-vw23-xj2q-3758", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-vw32-p44w-ff38", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-vwgf-cvj7-mwmg", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-vwp2-23jm-6qp4", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-vwr8-mpc5-m6rm", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-vwvg-xc2p-j2hw", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-vwwr-jrv7-q8x4", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-java-memory-assistant-1.10.2@1.10.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-vx6j-p33f-g53c", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-vx72-5mmw-p9px", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-vx8c-jv73-p4cm", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-vx96-hrg5-q257", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-vxr9-8rcx-g2v8", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-vxxh-56q9-h86c", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-w23q-c9cx-5jv2", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-unicorn-0.4.59@0.4.59-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-w248-hfx4-43rm", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-run-0.5.18@0.5.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-w258-qjw6-4px2", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-ca-certificates-3.12.1@3.12.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-w26q-wr36-5479", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-w2ch-pm5x-2j26", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-w2v9-98cj-7g88", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-w2wm-hxm8-5prf", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.23@1.18.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-w37r-33v5-vw56", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-w38w-5h3m-r647", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-w3g5-3j43-rwx8", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-w3j2-jppj-m24g", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-w43w-xf49-5642", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34165/references" }, { "vulnerability": { "name": "MINI-w493-jhcq-mfvg", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-w496-9xv5-gxrx", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-w4cj-qfvj-mq7w", "aliases": [ "CVE-2025-21614" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-21614/references" }, { "vulnerability": { "name": "MINI-w4p6-33x2-v3jq", "aliases": [ "CVE-2026-22184" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" }, { "@id": "pkg:apk/minimos/zlib-dev@1.3.2-r1" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This vulnerability was disputed." }, { "vulnerability": { "name": "MINI-w4r7-297w-m9xh", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-w52m-vmwc-63j6", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-w55v-jx2j-3p7j", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-w568-ghpx-hmjr", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-w58x-3h63-9c6p", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-w5p7-r3x6-4pm2", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-w5v4-hxjr-rr5x", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-w667-ph29-mj8v", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-w6g2-jcmw-qqv3", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45570/references" }, { "vulnerability": { "name": "MINI-w6gw-2r6x-xph6", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-w734-qmm6-j432", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-w7q8-5qg9-rpq3", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-w899-52pw-22vp", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-w8cr-vp27-278v", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-w94c-r2hp-55hj", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-w9jc-chh8-39w3", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-w9x7-jxmx-m6cm", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-w9xj-qq3q-8wvv", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-procfile-5.13.1@5.13.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-wc4h-fmvr-m5v6", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-wc73-63mf-jf7h", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-wcgf-34pv-7h44", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-wcwr-c6wm-j8rq", "aliases": [ "CVE-2025-47913" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47913/references" }, { "vulnerability": { "name": "MINI-wf2v-9w52-c74x", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-wf3f-jmh2-6cw2", "aliases": [ "CVE-2026-47262" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47262/references" }, { "vulnerability": { "name": "MINI-wf68-h4r8-cr5w", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-wf8f-5jwm-vwxp", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-wfhj-3xxv-3vc4", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-wg3m-pj53-gmhp", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-wg64-4292-3gvh", "aliases": [ "CVE-2026-3441" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wg97-869f-5822", "aliases": [ "CVE-2024-50349" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wgm9-m3vv-4jm3", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-wgr6-wx5f-jvhf", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-wgrc-22v7-mhh9", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-wgrg-j3cx-vv72", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-wh2v-p9mw-47jr", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-wh55-qqxm-2xq7", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-whgp-hxjm-pfcq", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-whj4-26qh-cjpf", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-whq5-w5cm-28fv", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-whr2-jwh4-w728", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-whvm-p7q3-m739", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.0@4.12.0-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-wj93-mj32-56c9", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15558/references" }, { "vulnerability": { "name": "MINI-wjjr-qm5h-2pmq", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-wm36-vmf6-r6hc", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rake-0.4.61@0.4.61-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22870/references" }, { "vulnerability": { "name": "MINI-wmj9-r3vv-r47v", "aliases": [ "CVE-2026-7168" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl-openssl-3.0@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl-3.0@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wmwx-qjvw-r7fw", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-wp7p-wqmm-4v7j", "aliases": [ "CVE-2024-41110" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-41110/references" }, { "vulnerability": { "name": "MINI-wphw-r63p-4v6f", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-wpvw-w3h5-693g", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-wq62-cp22-3h94", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-datadog-6.9.2@6.9.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-wq7f-c8g9-pwq3", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-wq85-7h75-p3c8", "aliases": [ "CVE-2026-22695" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wqwg-jv6q-mj3r", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-wr4x-wrrw-4w32", "aliases": [ "CVE-2024-40635" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-40635/references" }, { "vulnerability": { "name": "MINI-wrpj-8mgr-q8w3", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-wrxm-hpf8-g629", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-wv2j-3cqf-65r9", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-wv7m-6qrg-cw9q", "aliases": [ "CVE-2025-3198" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wv95-27vx-pcmv", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-wvfj-hcpr-8w94", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-vsdbg-0.6.21@0.6.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-wvj8-874x-rmwp", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-wvjj-5248-r78r", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-wvm3-m7q4-63f5", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-wvp7-95vv-22r6", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-wvwh-x949-mjwh", "aliases": [ "CVE-2026-42770" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ww27-ghxv-5jp7", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-ww6m-5wxc-w783", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-ww7q-hmv6-hgmc", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.10@2.7.10-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-ww7w-cpf6-4cjv", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-ww84-rx2j-4qmp", "aliases": [ "CVE-2026-53492" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53492/references" }, { "vulnerability": { "name": "MINI-wwcw-v54q-8c29", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-wwr3-vmfw-832j", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45571/references" }, { "vulnerability": { "name": "MINI-wx4v-vvr4-rh22", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-publish-1.2.18@1.2.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-wx63-7qcf-h2rc", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomee-1.17.2@1.17.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-wx64-7fx9-wfqw", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-wx6j-rf7r-w3hg", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-clojure-tools-2.17.5@2.17.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-wx99-2rgh-w86c", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-liberty-6.1.4@6.1.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-wxcg-427g-v9wm", "aliases": [ "CVE-2026-25934" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25934/references" }, { "vulnerability": { "name": "MINI-wxcj-vgh7-6g5f", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-wxpx-83r9-6hq9", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-upx-4.1.3@4.1.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-x24w-2q42-w3m3", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-x2fw-4f8q-cp73", "aliases": [ "CVE-2025-64720" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x2j8-g82m-w2v6", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-x2v5-329m-8vh7", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-x2w5-xj6f-3g9r", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-x2wm-7h93-j84p", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rails-assets-0.10.25@0.10.25-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-x2x7-m3fg-xhfw", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-x32x-875h-7rpw", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-apache-tomcat-8.9.5@8.9.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-x334-977m-754q", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45022/references" }, { "vulnerability": { "name": "MINI-x3cj-7f34-w3f3", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-azure-application-insights-6.2.3@6.2.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-x3m7-3c77-74xg", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-x3rq-jq72-mmqg", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-x3rw-6hr7-f8f5", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-x442-7g3q-732q", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-x46h-2qpr-g42g", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-x4h7-2f6h-7cf4", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-x4w6-2m42-3692", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-x554-mxc3-h6ww", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-x5j6-8ff7-rvvg", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-google-stackdriver-10.2.2@10.2.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-x635-7jjr-7hrw", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-x645-jr55-xwvf", "aliases": [ "CVE-2026-53489" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53489/references" }, { "vulnerability": { "name": "MINI-x64f-7w4c-5m84", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-x659-r72g-8hc3", "aliases": [ "CVE-2025-66293" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x6cf-vxmw-7q6v", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-encrypt-at-rest-4.11.4@4.11.4-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-x6g9-g5h5-pqqf", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-environment-variables-4.11.2@4.11.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-x6gh-p2r9-2chc", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-x6h8-hw8q-62mp", "aliases": [ "CVE-2025-69418" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x6r6-6pf7-fqjg", "aliases": [ "CVE-2026-42501" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42501/references" }, { "vulnerability": { "name": "MINI-x6rj-qcfj-ch66", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-x72g-hx6v-79r5", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-x777-crqc-qr2r", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-x7m4-8p3h-v5v8", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44973/references" }, { "vulnerability": { "name": "MINI-x7rq-9pmr-2gc9", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-x7rr-rc4m-xvfr", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-x844-688w-m7r7", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-x84v-fjwc-mcvj", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-nginx-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-x85v-3w4j-6jmx", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-0.16.3@0.16.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-x86g-cgq3-59jx", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-x8fv-h4xp-2rcq", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-maven-6.22.6@6.22.6-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-x8g6-v7rx-mwxg", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.5@8.0.5-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-x8r2-5xr9-2vf2", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-execute-1.2.22@1.2.22-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-x964-9862-2whp", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-x98f-mfgj-9jc3", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-icu-0.9.21@0.9.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-x9qm-6mmr-q98h", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-x9r6-g397-73qq", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-x9vh-p7f7-v5cq", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-xc6h-v4mg-q45x", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-xch6-99wm-hprc", "aliases": [ "CVE-2024-25621" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-25621/references" }, { "vulnerability": { "name": "MINI-xcv8-qq8r-3pmm", "aliases": [ "CVE-2026-28388" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/libssl3-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0@3.0.21-r0" }, { "@id": "pkg:apk/minimos/openssl-3.0-dev@3.0.21-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xf42-qr73-8mgr", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-xf5x-4q7m-hh75", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-source-removal-1.0.23@1.0.23-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-xfcf-r93q-m96w", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-xfwp-8vrx-hxmj", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-xg3g-fh2m-x42j", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-xgpj-c4f6-5qcc", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-xh2j-f22x-j34v", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-xh5m-vg98-2vxg", "aliases": [ "CVE-2026-39819" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39819/references" }, { "vulnerability": { "name": "MINI-xh6v-rj8q-65m7", "aliases": [ "CVE-2026-24051" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-xh79-7j9x-68pm", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-xh98-c8c9-h5xm", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-xhpx-cqc3-75g4", "aliases": [ "CVE-2026-27144" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21@0.21.8-r0" }, { "@id": "pkg:apk/minimos/buildpacks-lifecycle-0.21-oci-compat@0.21.8-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xj6c-2qhh-jw6m", "aliases": [ "CVE-2026-53488" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-node-engine-8.0.12@8.0.12-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53488/references" }, { "vulnerability": { "name": "MINI-xj8h-g249-f9q9", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-leiningen-4.15.2@4.15.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-xjg4-8qw6-2qwq", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-image-labels-4.12.1@4.12.1-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-xjg5-cp55-vqrr", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-install-0.7.18@0.7.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33762/references" }, { "vulnerability": { "name": "MINI-xjmx-hccm-vvxm", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-22870/references" }, { "vulnerability": { "name": "MINI-xjp6-54cq-9qcp", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-install-0.7.20@0.7.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-xjvg-w95w-m83j", "aliases": [ "CVE-2025-28162" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.58-r0" }, { "@id": "pkg:apk/minimos/libpng-dev@1.6.58-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xm8f-qv6c-f693", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundler-0.8.48@0.8.48-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-xmf3-683p-vgq3", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-xmj3-5c29-hg77", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-xmj7-3q9m-r4wr", "aliases": [ "CVE-2026-33481" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-cpython-1.18.16@1.18.16-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33481/references" }, { "vulnerability": { "name": "MINI-xmx3-fvcv-738j", "aliases": [ "CVE-2026-25934" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.24@2.2.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25934/references" }, { "vulnerability": { "name": "MINI-xp59-xp26-r3fc", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-xp79-9rcm-c625", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-httpd-1.0.2@1.0.2-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-xpjj-p3cp-g4qg", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-xpmh-x53v-5fmg", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-build-2.4.20@2.4.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-xpvr-g898-2m9p", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-xq4v-45qp-46vq", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-go-mod-vendor-1.1.21@1.1.21-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-xq5q-r29h-f269", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pipenv-1.24.11@1.24.11-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44740/references" }, { "vulnerability": { "name": "MINI-xq92-7ffc-gp2c", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-miniconda-0.11.14@0.11.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-xqg7-rgxg-ff4v", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-install-2.7.3@2.7.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-xqm5-5cr6-3696", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-rackup-0.4.52@0.4.52-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-xrcw-hrh3-xxcq", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-thin-0.5.56@0.5.56-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-xrxv-qjjg-g582", "aliases": [ "CVE-2025-58058" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-bundle-install-0.8.18@0.8.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58058/references" }, { "vulnerability": { "name": "MINI-xrxw-wrw6-qxx6", "aliases": [ "CVE-2026-46680" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-pip-0.26.3@0.26.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46680/references" }, { "vulnerability": { "name": "MINI-xv7p-mhp8-6r2j", "aliases": [ "CVE-2025-69647" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xvcw-6qrx-g8c5", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-aspnet-runtime-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-xvmq-5j64-5wpf", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-run-0.5.18@0.5.18-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-xvv6-cvr7-p3gg", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-xvv8-g423-fw78", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-dotnet-core-sdk-1.6.20@1.6.20-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-xwh9-g56j-78vw", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-sbt-6.22.7@6.22.7-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-xwj6-mpfv-5f8p", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-poetry-install-0.6.24@0.6.24-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-xwj7-8pr8-7rqv", "aliases": [ "CVE-2026-24051" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-yarn-2.2.27@2.2.27-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-xwq7-7qr2-mhrv", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-passenger-0.14.14@0.14.14-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-xwrj-38wx-5mfr", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-npm-install-2.3.15@2.3.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-w5pp-99ch-qj29/references" }, { "vulnerability": { "name": "MINI-xx47-3gxr-pm52", "aliases": [ "CVE-2026-24051" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-mri-0.19.11@0.19.11-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-xx49-692h-5rcm", "aliases": [ "CVE-2025-11413" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxj3-rjrx-7j54", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-conda-env-update-0.8.15@0.8.15-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41506/references" }, { "vulnerability": { "name": "MINI-xxq7-p3w6-hcrc", "aliases": [ "CVE-2025-69644" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/binutils@2.46.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxv9-9v6h-7757", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/paketo-buildpacks-builder-base", "hashes": { "sha-256": "sha256:7b6accb9d928d90b423c16c4d16717bd06ef6f4d20fcfbd27adee11825c11f57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/buildpacks-gradle-8.4.3@8.4.3-r0" } ] } ], "status": "affected", "impact_statement": "The package was deprecated and replaced by newer versions.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" } ] }