Vulnerabilities found for loki:2.9.2-22.04_85

[ROCKsBot]

Vulnerabilities found for loki:2.9.2-22.04_85

ID	Target	Severity	Package
CVE-2023-45142	/usr/bin/logcli	HIGH	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
CVE-2024-24790	/usr/bin/logcli	CRITICAL	stdlib
CVE-2023-45288	/usr/bin/logcli	HIGH	stdlib
CVE-2024-34156	/usr/bin/logcli	HIGH	stdlib
CVE-2023-45142	/usr/bin/loki	HIGH	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
CVE-2024-24790	/usr/bin/loki	CRITICAL	stdlib
CVE-2023-45288	/usr/bin/loki	HIGH	stdlib
CVE-2024-34156	/usr/bin/loki	HIGH	stdlib
CVE-2023-45142	/usr/bin/loki-canary	HIGH	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
CVE-2024-24790	/usr/bin/loki-canary	CRITICAL	stdlib
CVE-2023-45288	/usr/bin/loki-canary	HIGH	stdlib
CVE-2024-34156	/usr/bin/loki-canary	HIGH	stdlib
CVE-2024-41110	/usr/bin/promtail	CRITICAL	github.com/docker/docker
CVE-2023-45142	/usr/bin/promtail	HIGH	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
CVE-2024-24790	/usr/bin/promtail	CRITICAL	stdlib
CVE-2023-45288	/usr/bin/promtail	HIGH	stdlib
CVE-2024-34156	/usr/bin/promtail	HIGH	stdlib

Affected tracks:

• 2.9.2-22.04_beta
• 2.9.2-22.04_candidate
• 2.9.2-22.04_edge
• 2.9.2-22.04_stable

Details: https://github.com/canonical/oci-factory/actions/runs/12111064224