Skip to main content
Version: latest

Security Notice for u-2204-0-k-12912-0

This page provides a listing of vulnerabilities found in the image u-2204-0-k-12912-0.

Overview

  • Summary: Security Advisory for Ubuntu 22.04 with Kubernetes 1.29.12
  • Initial Notice Published: 02/05/2025
  • Last Updated: 09/17/2025

Linked Vulnerabilities

CVE IDPackageInstalled VersionSeverityNIST Link
CVE-2024-24790gov1.20.7CRITICALDetails
CVE-2023-37920certifi2020.6.20CRITICALDetails
CVE-2024-3596libgssapi-krb5-21.19.2-2ubuntu0.4CRITICALDetails
CVE-2021-46848libtasn1-64.18.0-4build1CRITICALDetails
CVE-2021-3773linux-cloud-tools-5.15.0-1305.15.0-130.140CRITICALDetails
CVE-2023-29405gogo1.20.4CRITICALDetails
CVE-2023-29404gogo1.20.4CRITICALDetails
CVE-2023-29402gogo1.20.4CRITICALDetails
CVE-2022-4337openvswitchUnknownCRITICALDetails
CVE-2022-4338openvswitchUnknownCRITICALDetails
CVE-2021-41093wireUnknownCRITICALDetails
CVE-2020-27853wireUnknownCRITICALDetails

Revision History

DateRevision
09/17/2025Official summary revised: An attacker with local access to a system running a vulnerable version could exploit this vulnerability to manipulate memory after it has been freed, which may lead to memory corruption, crashes, or potentially code execution depending on how the library is used within the context of the affected process. The vulnerability affects LibTIFF tools/utilities that invoke tiffmedian (or its get_histogram code path) and is particularly relevant in environments that run that tool with user-supplied or untrusted input. In containerized or production server environments the risk is considered low to medium because tiffmedian is not used. The impact, if successfully exploited, is potentially low. At best it causes application container to restart. This vulnerability mainly affects the UI related container images.As and when the upstream fix becomes available, it will be incorporated.