CVE-2025-24882 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerab…
Medium CVSS: 5.2

CVE-2025-24882

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1.
Vendor
-
Product
-
CWE
CWE-20
Yayın Tarihi
2025-01-29 18:15:47
Güncelleme
2025-01-29 18:15:47
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-20 MEDIUM 2025

Referanslar

https://github.com/regclient/regclient/commit/7d17cff26c22196b5ddd66bda8c5ee4abf3d1269 https://github.com/regclient/regclient/security/advisories/GHSA-qv35-3gw6-8q4j