Run environment

Distribution name
redpesk-baseos
Command line
/home/jenkins/workspace/JF-redpesk-image-sbom-vex/redpesk-vexmex/venv/bin/vexmex distro status redpesk-baseos --fixed --affected --format html --from-package-list packages --exclusion-file data/excluded_redpesk_packages.txt
Time of run
2025-02-20T14:40:17.841541

Ignored packages

List of ignored packages (excluded, or upstream version not found):

Affected packages

cpio

Version: 0:2.13-16.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2015-1197NoneKnownAffectedNone
CVE-2023-7207NoneKnownAffectedNone
CVE-2023-7216NoneKnownAffectedNone

curl

Version: 0:7.76.1-23.baseos.rpbatz.7.aarch64

CVESeverityStatusResolution
CVE-2023-27533NoneFixed0:7.76.1-26.el9
CVE-2023-27534NoneFixed0:7.76.1-26.el9
CVE-2023-27538NoneFixed0:7.76.1-26.el9
CVE-2023-27536NoneFixed0:7.76.1-26.el9
CVE-2023-38545NoneFixed0:7.76.1-26.el9_3.2
CVE-2023-38546NoneFixed0:7.76.1-26.el9_3.2
CVE-2023-46218NoneFixed0:7.76.1-26.el9_3.3
CVE-2024-11053NoneKnownAffectedNone
CVE-2024-2398NoneFixed0:7.76.1-23.el9_2.7
CVE-2024-9681NoneKnownAffectedNone
CVE-2024-7264NoneKnownAffectedNone

dmidecode

Version: 1:3.3-7.apps.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-30630NoneFixed1:3.3-7.el9_2.1

file

Version: 0:5.39-12.1.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2022-48554NoneFixed0:5.39-16.el9

file-libs

Version: 0:5.39-12.1.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2022-48554NoneFixed0:5.39-16.el9

gawk

Version: 0:5.1.0-6.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-4156NoneKnownAffectedNone

glib2

Version: 0:2.68.4-6.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-29499NoneFixed0:2.68.4-11.el9
CVE-2023-32611NoneFixed0:2.68.4-11.el9
CVE-2023-32636NoneKnownAffectedNone
CVE-2023-32665NoneFixed0:2.68.4-11.el9
CVE-2024-52533NoneKnownAffectedNone

glibc

Version: 0:2.34-60.baseos.rpbatz.14.aarch64

CVESeverityStatusResolution
CVE-2023-4527NoneFixed0:2.34-60.el9_2.7
CVE-2023-4806NoneFixed0:2.34-60.el9_2.7
CVE-2023-4813NoneFixed0:2.34-60.el9_2.7
CVE-2023-4911NoneFixed0:2.34-60.el9_2.7
CVE-2024-2961NoneFixed0:2.34-60.el9_2.14
CVE-2024-33599NoneFixed0:2.34-60.el9_2.14
CVE-2024-33600NoneFixed0:2.34-60.el9_2.14
CVE-2024-33602NoneFixed0:2.34-60.el9_2.14
CVE-2024-33601NoneFixed0:2.34-60.el9_2.14
CVE-2025-0395NoneKnownAffectedNone

glibc-common

Version: 0:2.34-60.baseos.rpbatz.14.aarch64

CVESeverityStatusResolution
CVE-2023-4527NoneFixed0:2.34-60.el9_2.7
CVE-2023-4806NoneFixed0:2.34-60.el9_2.7
CVE-2023-4813NoneFixed0:2.34-60.el9_2.7
CVE-2023-4911NoneFixed0:2.34-60.el9_2.7
CVE-2024-2961NoneFixed0:2.34-60.el9_2.14
CVE-2024-33599NoneFixed0:2.34-60.el9_2.14
CVE-2024-33600NoneFixed0:2.34-60.el9_2.14
CVE-2024-33602NoneFixed0:2.34-60.el9_2.14
CVE-2024-33601NoneFixed0:2.34-60.el9_2.14

glibc-gconv-extra

Version: 0:2.34-60.baseos.rpbatz.14.aarch64

CVESeverityStatusResolution
CVE-2023-4527NoneFixed0:2.34-60.el9_2.7
CVE-2023-4806NoneFixed0:2.34-60.el9_2.7
CVE-2023-4813NoneFixed0:2.34-60.el9_2.7
CVE-2023-4911NoneFixed0:2.34-60.el9_2.7
CVE-2024-2961NoneFixed0:2.34-60.el9_2.14
CVE-2024-33599NoneFixed0:2.34-60.el9_2.14
CVE-2024-33600NoneFixed0:2.34-60.el9_2.14
CVE-2024-33602NoneFixed0:2.34-60.el9_2.14
CVE-2024-33601NoneFixed0:2.34-60.el9_2.14

glibc-langpack-en

Version: 0:2.34-60.baseos.rpbatz.14.aarch64

CVESeverityStatusResolution
CVE-2023-4527NoneFixed0:2.34-60.el9_2.7
CVE-2023-4806NoneFixed0:2.34-60.el9_2.7
CVE-2023-4813NoneFixed0:2.34-60.el9_2.7
CVE-2023-4911NoneFixed0:2.34-60.el9_2.7
CVE-2024-2961NoneFixed0:2.34-60.el9_2.14
CVE-2024-33599NoneFixed0:2.34-60.el9_2.14
CVE-2024-33600NoneFixed0:2.34-60.el9_2.14
CVE-2024-33602NoneFixed0:2.34-60.el9_2.14
CVE-2024-33601NoneFixed0:2.34-60.el9_2.14

gmp

Version: 1:6.2.0-10.el9.aarch64

CVESeverityStatusResolution
CVE-2021-43618NoneFixed1:6.2.0-13.el9

gnupg2

Version: 0:2.3.3-2.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2022-3219NoneKnownAffectedNone

gnutls

Version: 0:3.7.6-21.baseos.rpbatz.2.aarch64

CVESeverityStatusResolution
CVE-2023-5981NoneFixed0:3.7.6-23.el9_3.3
CVE-2024-0553NoneFixed0:3.7.6-23.el9_3.3
CVE-2024-0567NoneFixed0:3.7.6-23.el9_3.3
CVE-2024-28835NoneFixed0:3.7.6-23.el9_3.4
CVE-2024-28834NoneFixed0:3.7.6-23.el9_3.4

less

Version: 0:590-3.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2022-48624NoneFixed0:590-3.el9_3
CVE-2024-32487NoneFixed0:590-3.el9_2

libarchive

Version: 0:3.5.3-4.baseos.rpbatz.1r.aarch64

CVESeverityStatusResolution
CVE-2023-30571NoneKnownAffectedNone

libbpf

Version: 2:1.0.0-5.apps.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-45941NoneKnownAffectedNone
CVE-2021-45940NoneKnownAffectedNone
CVE-2022-3606NoneKnownAffectedNone

libcurl

Version: 0:7.76.1-23.baseos.rpbatz.7.aarch64

CVESeverityStatusResolution
CVE-2023-27533NoneFixed0:7.76.1-26.el9
CVE-2023-27534NoneFixed0:7.76.1-26.el9
CVE-2023-27538NoneFixed0:7.76.1-26.el9
CVE-2023-27536NoneFixed0:7.76.1-26.el9
CVE-2023-38545NoneFixed0:7.76.1-26.el9_3.2
CVE-2023-38546NoneFixed0:7.76.1-26.el9_3.2
CVE-2023-46218NoneFixed0:7.76.1-26.el9_3.3
CVE-2024-2398NoneFixed0:7.76.1-23.el9_2.7

libgcrypt

Version: 0:1.10.0-10.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2024-2236NoneFixed0:1.10.0-11.el9

libmicrohttpd

Version: 1:0.9.72-4.apps.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-27371NoneFixed1:0.9.72-5.el9

libndp

Version: 0:1.8-5.apps.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2024-5564NoneFixed0:1.8-5.el9_2

libnghttp2

Version: 0:1.43.0-5.baseos.rpbatz.3.aarch64

CVESeverityStatusResolution
CVE-2024-28182NoneFixed0:1.43.0-5.el9_2.3

libssh

Version: 0:0.10.4-9.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-1667NoneFixed0:0.10.4-11.el9
CVE-2023-2283NoneFixed0:0.10.4-11.el9
CVE-2023-6004NoneFixed0:0.10.4-13.el9
CVE-2023-6918NoneFixed0:0.10.4-13.el9
CVE-2023-48795NoneFixed0:0.10.4-12.el9_3

libsss_idmap

Version: 0:2.8.2-5.apps.rpbatz.5.aarch64

CVESeverityStatusResolution
CVE-2023-3758NoneFixed0:2.8.2-5.el9_2.4

libsss_nss_idmap

Version: 0:2.8.2-5.apps.rpbatz.5.aarch64

CVESeverityStatusResolution
CVE-2023-3758NoneFixed0:2.8.2-5.el9_2.4

libxml2

Version: 0:2.9.13-3.baseos.rpbatz.3.aarch64

CVESeverityStatusResolution
CVE-2022-49043NoneKnownAffectedNone
CVE-2023-39615NoneFixed0:2.9.13-5.el9_3
CVE-2023-45322NoneKnownAffectedNone
CVE-2024-25062NoneFixed0:2.9.13-3.el9_2.3
CVE-2024-34459NoneKnownAffectedNone

libyaml

Version: 0:0.2.5-7.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2024-35325NoneKnownAffectedNone

ncurses

Version: 0:6.2-8.20210508.baseos.rpbatz.1.aarch64

CVESeverityStatusResolution
CVE-2022-29458NoneKnownAffectedNone
CVE-2023-29491NoneFixed0:6.2-10.20210508.el9
CVE-2023-45918NoneKnownAffectedNone
CVE-2023-50495NoneKnownAffectedNone

ncurses-libs

Version: 0:6.2-8.20210508.baseos.rpbatz.1.aarch64

CVESeverityStatusResolution
CVE-2023-29491NoneFixed0:6.2-10.20210508.el9

openldap

Version: 0:2.6.2-3.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-2953NoneKnownAffectedNone

openssh

Version: 0:8.7p1-30.apps.rpbatz.7.aarch64

CVESeverityStatusResolution
CVE-2016-20012NoneKnownAffectedNone
CVE-2023-51385NoneFixed0:8.7p1-34.el9_3.3
CVE-2023-51767NoneKnownAffectedNone
CVE-2024-6387NoneFixed0:8.7p1-30.el9_2.4
CVE-2024-6409NoneFixed0:8.7p1-30.el9_2.7
CVE-2023-48795NoneFixed0:8.7p1-34.el9_3.3

openssh-clients

Version: 0:8.7p1-30.apps.rpbatz.7.aarch64

CVESeverityStatusResolution
CVE-2023-51385NoneFixed0:8.7p1-34.el9_3.3
CVE-2024-6387NoneFixed0:8.7p1-30.el9_2.4
CVE-2024-6409NoneFixed0:8.7p1-30.el9_2.7
CVE-2023-48795NoneFixed0:8.7p1-34.el9_3.3

openssh-server

Version: 0:8.7p1-30.apps.rpbatz.7.aarch64

CVESeverityStatusResolution
CVE-2023-51385NoneFixed0:8.7p1-34.el9_3.3
CVE-2024-6387NoneFixed0:8.7p1-30.el9_2.4
CVE-2024-6409NoneFixed0:8.7p1-30.el9_2.7
CVE-2023-48795NoneFixed0:8.7p1-34.el9_3.3

openssl

Version: 1:3.0.7-18.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-2975NoneFixed1:3.0.7-27.el9
CVE-2023-3446NoneFixed1:3.0.7-27.el9
CVE-2023-3817NoneFixed1:3.0.7-27.el9
CVE-2023-5363NoneFixed1:3.0.7-25.el9_3
CVE-2023-5678NoneFixed1:3.0.7-27.el9
CVE-2023-6129NoneFixed1:3.0.7-27.el9
CVE-2023-6237NoneFixed1:3.0.7-27.el9
CVE-2024-0727NoneFixed1:3.0.7-27.el9
CVE-2024-13176NoneKnownAffectedNone
CVE-2024-41996NoneKnownAffectedNone

openssl-libs

Version: 1:3.0.7-18.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-2975NoneFixed1:3.0.7-27.el9
CVE-2023-3446NoneFixed1:3.0.7-27.el9
CVE-2023-3817NoneFixed1:3.0.7-27.el9
CVE-2023-5363NoneFixed1:3.0.7-25.el9_3
CVE-2023-5678NoneFixed1:3.0.7-27.el9
CVE-2023-6129NoneFixed1:3.0.7-27.el9
CVE-2023-6237NoneFixed1:3.0.7-27.el9
CVE-2024-0727NoneFixed1:3.0.7-27.el9

pam

Version: 0:1.5.1-15.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2024-22365NoneFixed0:1.5.1-19.el9

pcre2

Version: 0:10.40-2.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2022-41409NoneKnownAffectedNone

perl-interpreter

Version: 4:5.32.1-480.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-47038NoneFixed4:5.32.1-481.el9

perl-libs

Version: 4:5.32.1-480.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-47038NoneFixed4:5.32.1-481.el9

polkit

Version: 0:0.117-11.apps.rpbatz.1.aarch64

CVESeverityStatusResolution
CVE-2016-2568NoneKnownAffectedNone
CVE-2022-0235NoneKnownAffectedNone
CVE-2024-9506NoneKnownAffectedNone
CVE-2020-11023NoneKnownAffectedNone

procps-ng

Version: 0:3.3.17-11.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-4016NoneFixed0:3.3.17-13.el9

python3-rpm

Version: 0:4.16.1.3-24.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-35937NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35938NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35939NoneFixed0:4.16.1.3-27.el9_3

rpm

Version: 0:4.16.1.3-24.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-35937NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35938NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35939NoneFixed0:4.16.1.3-27.el9_3

rpm-build-libs

Version: 0:4.16.1.3-24.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-35937NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35938NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35939NoneFixed0:4.16.1.3-27.el9_3

rpm-libs

Version: 0:4.16.1.3-24.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-35937NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35938NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35939NoneFixed0:4.16.1.3-27.el9_3

rpm-plugin-systemd-inhibit

Version: 0:4.16.1.3-24.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-35937NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35938NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35939NoneFixed0:4.16.1.3-27.el9_3

rpm-sign-libs

Version: 0:4.16.1.3-24.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-35937NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35938NoneFixed0:4.16.1.3-27.el9_3
CVE-2021-35939NoneFixed0:4.16.1.3-27.el9_3

shadow-utils

Version: 2:4.9-6.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-4641NoneFixed2:4.9-8.el9
CVE-2024-56433NoneKnownAffectedNone

sqlite-libs

Version: 0:3.34.1-6.baseos.rpbatz.1.aarch64

CVESeverityStatusResolution
CVE-2023-7104NoneFixed0:3.34.1-7.el9_3

squashfs-tools

Version: 0:4.4-8.git1.apps.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-40153NoneFixed0:4.4-10.git1.el9
CVE-2021-41072NoneFixed0:4.4-10.git1.el9

sssd-client

Version: 0:2.8.2-5.apps.rpbatz.5.aarch64

CVESeverityStatusResolution
CVE-2023-3758NoneFixed0:2.8.2-5.el9_2.4

sudo

Version: 0:1.9.5p2-9.apps.rpbatz.2.aarch64

CVESeverityStatusResolution
CVE-2023-28486NoneFixed0:1.9.5p2-10.el9_3
CVE-2023-28487NoneFixed0:1.9.5p2-10.el9_3
CVE-2023-42465NoneFixed0:1.9.5p2-10.el9_3

systemd

Version: 0:252-14.baseos.rpbatz.8.aarch64

CVESeverityStatusResolution
CVE-2021-3997NoneKnownAffectedNone

tar

Version: 2:1.34-6.apps.rpbatz.1.aarch64

CVESeverityStatusResolution
CVE-2005-2541NoneKnownAffectedNone
CVE-2023-39804NoneKnownAffectedNone

tpm2-tss

Version: 0:3.0.3-8.baseos.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2023-22745NoneFixed0:3.2.2-2.el9
CVE-2024-29040NoneKnownAffectedNone

unzip

Version: 0:6.0-56.apps.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2021-4217NoneKnownAffectedNone
CVE-2022-0529NoneKnownAffectedNone
CVE-2022-0530NoneKnownAffectedNone

wget

Version: 0:1.21.1-7.apps.rpbatz.1.aarch64

CVESeverityStatusResolution
CVE-2021-31879NoneKnownAffectedNone
CVE-2024-10524NoneKnownAffectedNone

wpa_supplicant

Version: 1:2.10-4.apps.rpbatz.aarch64

CVESeverityStatusResolution
CVE-2022-23304NoneKnownAffectedNone
CVE-2023-52160NoneFixed1:2.10-5.el9
CVE-2023-52424NoneKnownAffectedNone
CVE-2024-5290NoneKnownAffectedNone