poetry.lock - Trivy Report - 2024-09-10 12:19:03.084671203 +0000 UTC m=+4.392486907
poetry
Package
Vulnerability ID
Severity
Installed Version
Fixed Version
Links
certifi
CVE-2024-39689
LOW
2024.2.2
2024.07.04
https://access.redhat.com/security/cve/CVE-2024-39689
https://github.com/certifi/python-certifi
https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463
https://github.com/certifi/python-certifi/security/advisories/GHSA-248v-346w-9cwc
https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI
https://nvd.nist.gov/vuln/detail/CVE-2024-39689
https://www.cve.org/CVERecord?id=CVE-2024-39689
cryptography
GHSA-h4gh-qq45-vh27
MEDIUM
42.0.5
43.0.1
https://github.com/pyca/cryptography
https://github.com/pyca/cryptography/security/advisories/GHSA-h4gh-qq45-vh27
https://openssl-library.org/news/secadv/20240903.txt
requests
CVE-2024-35195
MEDIUM
2.31.0
2.32.0
https://access.redhat.com/security/cve/CVE-2024-35195
https://github.com/psf/requests
https://github.com/psf/requests/commit/a58d7f2ffb4d00b46dca2d70a3932a0b37e22fac
https://github.com/psf/requests/pull/6655
https://github.com/psf/requests/security/advisories/GHSA-9wx4-h78v-vm56
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IYLSNK5TL46Q6XPRVMHVWS63MVJQOK4Q
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IYLSNK5TL46Q6XPRVMHVWS63MVJQOK4Q/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N7WP6EYDSUOCOJYHDK5NX43PYZ4SNHGZ
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N7WP6EYDSUOCOJYHDK5NX43PYZ4SNHGZ/
https://nvd.nist.gov/vuln/detail/CVE-2024-35195
https://www.cve.org/CVERecord?id=CVE-2024-35195
setuptools
CVE-2024-6345
HIGH
69.5.1
70.0.0
https://access.redhat.com/errata/RHSA-2024:5534
https://access.redhat.com/security/cve/CVE-2024-6345
https://bugzilla.redhat.com/2297771
https://bugzilla.redhat.com/show_bug.cgi?id=2297771
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6345
https://errata.almalinux.org/9/ALSA-2024-5534.html
https://errata.rockylinux.org/RLSA-2024:5530
https://github.com/pypa/setuptools
https://github.com/pypa/setuptools/commit/88807c7062788254f654ea8c03427adc859321f0
https://github.com/pypa/setuptools/pull/4332
https://huntr.com/bounties/d6362117-ad57-4e83-951f-b8141c6e7ca5
https://linux.oracle.com/cve/CVE-2024-6345.html
https://linux.oracle.com/errata/ELSA-2024-6311.html
https://nvd.nist.gov/vuln/detail/CVE-2024-6345
https://www.cve.org/CVERecord?id=CVE-2024-6345
urllib3
CVE-2024-37891
MEDIUM
2.2.1
1.26.19, 2.2.2
https://access.redhat.com/errata/RHSA-2024:6162
https://access.redhat.com/security/cve/CVE-2024-37891
https://bugzilla.redhat.com/2292788
https://errata.almalinux.org/9/ALSA-2024-6162.html
https://github.com/urllib3/urllib3
https://github.com/urllib3/urllib3/commit/40b6d1605814dd1db0a46e202d6e56f2e4c9a468
https://github.com/urllib3/urllib3/commit/accff72ecc2f6cf5a76d9570198a93ac7c90270e
https://github.com/urllib3/urllib3/security/advisories/GHSA-34jh-p97f-mpxf
https://linux.oracle.com/cve/CVE-2024-37891.html
https://linux.oracle.com/errata/ELSA-2024-6311.html
https://nvd.nist.gov/vuln/detail/CVE-2024-37891
https://www.cve.org/CVERecord?id=CVE-2024-37891
No Misconfigurations found