CVEs (CWEs) Addressed in Okera Versions¶
Okera uses Snyk and GitHub Advanced Security for security vulnerability scanning. The following table lists the CVEs and CWEs that have been addressed in Okera and the earliest Okera releases in which they were addressed. If a vulnerability is addressed in one release, it is addressed in all later releases as well.
| CVE/CWE Number | Earliest Okera Release |
|---|---|
| Alpine-13661 Alpine314: Alpine-13661 | 2.11.6 |
| CVE-2017-7525 Incomplete Blacklist | 2.11.2 |
| CVE-2017-15095 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2017-17485 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-5968 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-7489 Incomplete Blacklist | 2.11.2 |
| CVE-2018-11307 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-12022 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-12023 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-14718 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-14719 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-14720 XML External Entity (XXE) Injection | 2.11.2 |
| CVE-2018-14721 Server-Side Request Forgery (SSRF) | 2.11.2 |
| CVE-2018-19360 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-19361 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-19362 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2018-25032 Alpine314: Out-of-bounds Write | 2.11.6 |
| CVE-2019-12086 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-12384 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-12814 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-14379 Improperly Controlled Modification of Dynamically-Determined Object Attributes | 2.11.2 |
| CVE-2019-14439 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-14540 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-14892 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-14893 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-16335 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-16942 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-16943 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-17267 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-17531 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2019-20330 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-8840 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-9546 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-9547 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-9548 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-10650 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-10672 CVE-2020-10672 | 2.11.2 |
| CVE-2020-10673 CVE-2020-10673 | 2.11.2 |
| CVE-2020-10968 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-10969 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-11111 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-11112 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-11113 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-11619 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-11620 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-14060 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-14061 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-14062 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-14195 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-16156 Ubuntu 18.04 - Perl (Improper Verification of Cryptographic Signature) | 2.11.5 |
| CVE-2020-17523 Authentication Bypass | 2.10.5 |
| CVE-2020-24616 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-24750 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-25649 XML External Entity (XXE) Injection | 2.10.5 |
| CVE-2020-28483 HTTP Response Splitting | 2.10.5 |
| CVE-2020-35490 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-35491 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-35728 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36179 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36180 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36181 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36182 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36183 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36184 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36185 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36186 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36187 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36188 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36189 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2020-36518 Out-of-bounds-Write | 2.10.5 |
| CVE-2021-4209 Null Pointer Dereference | 2.10.6 |
| CVE-2021-20190 Deserialization of Untrusted Data | 2.11.2 |
| CVE-2021-43618 Ubuntu 18.04 - gmp (Integer Overflow or Wraparound) | 2.11.5 |
| CVE-2021-46828 Alpine314: Allocation of Resources Without Limits or Throttling | 2.11.6 |
| CVE-2021-46848 Out-of-bounds Read | 2.11.5 |
| CVE-2022-0778 Alpine314: Loop with Unreachable Exit Condition ('Infinite Loop') | 2.11.6 |
| CVE-2022-1097 Alpine314: OpenJDK | 2.11.6 |
| CVE-2022-1271 Alpine314: Improper Input Validation | 2.11.6 |
| CVE-2022-2097 Alpine314: Inadequate Encryption Strength | 2.10.4 |
| CVE-2022-2309 Alpine314: NULL Pointer Dereference | 2.11.6 |
| CVE-2022-2509 Double Free | 2.10.6 |
| CVE-2022-2526 Use After Free | 2.10.6 |
| CVE-2022-3510 Denial of Service (DoS) | 2.15.0 |
| CVE-2022-3970 Numeric Errors | 2.11.6 |
| CVE-2022-21434 Oracle Java SE Vulnerability | 2.10.5 |
| CVE-2022-21540 Alpine315: OpenJDK | 2.11.6 |
| CVE-2022-21541 Alpine315: OpenJDK | 2.11.6 |
| CVE-2022-21549 Alpine315: OpenJDK | 2.11.6 |
| CVE-2022-21589 Ubuntu 18.04 - MySQL Server Vulnerability | 2.11.5 |
| CVE-2022-21592 Ubuntu 18.04 - MySQL Server Vulnerability | 2.11.5 |
| CVE-2022-21608 Ubuntu 18.04 - MySQL Server Vulnerability | 2.11.5 |
| CVE-2022-21617 Ubuntu 18.04 - MySQL Server Vulnerability | 2.11.5 |
| CVE-2022-21619 Alpine315: OpenJDK | 2.11.6 |
| CVE-2022-21624 Alpine315: OpenJDK | 2.11.6 |
| CVE-2022-21626 Alpine315: OpenJDK | 2.11.6 |
| CVE-2022-21628 Alpine315: OpenJDK | 2.11.6 |
| CVE-2022-21698 Denial of Service (DoS) | 2.15.0 |
| CVE-2022-22576 Improper Authentication | 2.10.4 |
| CVE-2022-22576 Alpine314: Improper Authentication | 2.10.4 |
| CVE-2022-22747 NSS Issue | 2.10.4 |
| CVE-2022-23437 XML Injection | 2.10.5 |
| CVE-2022-24765 Uncontrolled Search Path Element | 2.10.4 |
| CVE-2022-25647 Alpine315: Deserialization of Untrusted Data | 2.10.5 |
| CVE-2022-27404 Alpine314: Out-of-bounds Write | 2.11.6 |
| CVE-2022-27405 Alpine314: Out-of-bounds Read | 2.11.6 |
| CVE-2022-27406 Alpine314: Out-of-bounds Read | 2.11.6 |
| CVE-2022-27774 Alpine314: Insufficiently Protected Credentials | 2.11.6 |
| CVE-2022-27775 Alpine314: Curl | 2.10.4 |
| CVE-2022-27776 Alpine314: Insufficiently Protected Credentials | 2.11.6 |
| CVE-2022-27781 Alpine314: Loop with Unreachable Exit Condition ('Infinite Loop') | 2.10.4 |
| CVE-2022-27782 Alpine314: Improper Certificate Validation | 2.10.4 |
| CVE-2022-28391 Alpine314: BusyBox | 2.11.6 |
| CVE-2022-29155 Ubuntu USN-5424-1 OpenLDAP Vulnerability | 2.10.5 |
| CVE-2022-29187 Uncontrolled Search Path Element | 2.10.4 |
| CVE-2022-29361 HTTP Request Smuggling | 2.10.3 |
| CVE-2022-29458 Alpine314: Out-of-bounds Read | 2.10.5 |
| CVE-2022-29824 Alpine314: Integer Overflow or Wraparound | 2.11.6 |
| CVE-2022-31197 SQL Injection | 2.10.5 |
| CVE-2022-32205 Alpine314: Allocation of Resources Without Limits or Throttling | 2.10.4 |
| CVE-2022-32206 Alpine314: Allocation of Resources Without Limits or Throttling | 2.10.4 |
| CVE-2022-32207 Alpine314: Incorrect Default Permissions | 2.10.4 |
| CVE-2022-32208 Alpine314: Out-of-bounds Write | 2.10.4 |
| CVE-2022-32221 Alpine315: Curl | 2.11.5 |
| CVE-2022-34169 Alpine315: Incorrect Conversion between Numeric Types | 2.10.5 |
| CVE-2022-34480 NSS Issue | 2.10.4 |
| CVE-2022-34903 Arbitrary Code Injection | 2.10.4 |
| CVE-2022-35252 Alpine314: Curl | 2.11.6 |
| CVE-2022-36944 Remote Code Execute (RCE) | 2.11.3 |
| CVE-2022-37434 Alpine314: Out-of-bounds Write | 2.10.5 |
| CVE-2022-39253 Ubuntu 18.04 - git (Link Following) | 2.11.5 |
| CVE-2022-39260 Ubuntu 18.04 - git (Out-of-bounds Write) | 2.11.5 |
| CVE-2022-39399 Alpine315: OpenJDK | 2.11.6 |
| CVE-2022-40303 Alpine314: Integer Overflow or Wraparound | 2.11.6 |
| CVE-2022-40304 Alpine314: XML External Entity (XXE) Injection | 2.11.6 |
| CVE-2022-40664 Improper Authentication | 2.10.6 |
| CVE-2022-40674 Alpine314: Use After Free | 2.11.6 |
| CVE-2022-41828 Use of Function with Inconsistent Implementations | 2.10.6 |
| CVE-2022-41946 Information Exposure | 2.11.7 |
| CVE-2022-42003 Deserialization of Untrusted Data | 2.11.3 |
| CVE-2022-42004 Deserialization of Untrusted Data | 2.11.3 |
| CVE-2022-42898 Integer Overflow or Wraparound | 2.11.6 |
| CVE-2022-42915 Alpine315: Double Free | 2.11.5 |
| CVE-2022-42916 Alpine315: Cleartext Transmission of Sensitive Information | 2.11.5 |
| CVE-2022-43680 Alpine314: Use After Free | 2.11.6 |
| CVE-2022-45061 Resource Exhaustion | 2.11.7 |
|