OPENSUSE-RU-2026:20161-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2026-22772

Published: 27 Jan 2026, 17:25

Last modified:23 Mar 2026, 04:53

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Jan 2026, 17:25

Published

Vulnerability first disclosed

23 Mar 2026, 04:53

Last Modified

Vulnerability information updated

Description

Recommended update for hauler This update for hauler fixes the following issues: Changes in hauler: - Update to version 1.4.1 (bsc#1256546, CVE-2026-22772): * fixed typos for containerd imports (#493) * fix and support containerd imports of `hauls` (#492) * bump github.com/sigstore/fulcio (#489) - Update to version 1.4.0: * added/updated logging for `serve` and `remove` (#487) * added/fixed helm chart images/dependencies features (#485) * more experimental feature updates (#486) * add experimental notes (#483) * updated tempdir flag to store persistent flags (#484) * delete artifacts from store (#473) * path rewrites (#475) * updated/fixed workflow dependency versions (#478) - Update to version 1.3.2: * bump to latest cosign fork release (#481) * Bump golang.org/x/crypto in the go_modules group across 1 directory (#476)

Affected Systems

opensuse•hauler&distro=openSUSE Leap 16.0
< 1.4.1-bp160.1.1

OPENSUSE-RU-2026:20161-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (2)