OPENSUSE-SU-2025:0080-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2025-27144
Published: 03 Mar 2025, 09:28
Last modified:04 Feb 2026, 02:25

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

03 Mar 2025, 09:28
Published
Vulnerability first disclosed
04 Feb 2026, 02:25
Last Modified
Vulnerability information updated

Description

Security update for trivy This update for trivy fixes the following issues: Update to version 0.59.1: - CVE-2025-27144: Fixed Go JOSE's Parsing Vulnerable to Denial of Service (boo#1237618).

Affected Systems

  • opensusetrivy&distro=openSUSE Leap 15.6

    < 0.59.1-bp156.2.9.1

  • susetrivy&distro=SUSE Package Hub 15 SP6

    < 0.59.1-bp156.2.9.1

References (3)