CGA-45rj-vp5p-xrm7

Published

Last updated

Package

vitess-21.0

RepositoryWolfi

Latest Update

Pending upstream fix

Aliases

Severity

Unknown

Status

Pending upstream fix

Impact

The cross-spawn dependency causing this CVE is brought in by npm as a transitive dependency and will need to be updated by upstream maintainers

Status

Under investigation

Status

Fixed

Fixed version

21.0.2-r0

Status

Under investigation

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™