CGA-8q9x-xfcc-6grq

Published

Last updated

https://images.chainguard.dev/security/CGA-8q9x-xfcc-6grq

Package

jitsucom-jitsu

RepositoryWolfi

Latest Update

Pending upstream fix

Aliases

CVE-2025-22871
GHSA-g9pc-8g42-g6vq

Severity

Unknown

References

https://nvd.nist.gov/vuln/detail/CVE-2025-22871
https://github.com/advisories/GHSA-g9pc-8g42-g6vq

Updates

Status

Pending upstream fix

Impact

The package currently builds esbuild from upstream which is compiled with go1.23.7. There is already an issue open in esbuild to update go to 1.23.8: https://github.com/evanw/esbuild/issues/4133

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CGA-8q9x-xfcc-6grq

Severity

References

Updates

Product

Solutions

Customers

Resources

Company