Approved changes feed: RSS · Atom

cpe:2.3:o:alpinelinux:alpine_linux:*:*:*:*:*:*:*:*

part: o version: * update: *

VendorAlpinelinux (0463bb34-65a9-5d31-b141-285ac587051c)
ProductAlpine Linux (18a71832-ffe5-5d87-8dc7-1005b470e2a2)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:docker/alpinelinux/docker-alpine purl2cpe 2026-06-01 10:12:51.959022
pkg:github/alpinelinux/docker-alpine purl2cpe 2026-06-01 10:12:51.959023

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-1000849 vulnerable 2026-06-08 05:10:26.114002 Details available
Alpine Linux version Versions prior to 2.6.10, 2.7.6, and 2.10.1 contains a Other/Unknown vulnerability in apk-tools (Alpine Linux' package manager) that can result in Remote Code Execution. This attack appear to be exploitable via A specially crafted APK-file can cause apk to write arbitrary data to an attacker-specified file, due to bugs in handling long link target name and the way a regular file is extracted.. This vulnerability appears to have been fixed in 2.6.10, 2.7.6, and 2.10.1.
Published: 2018-12-20T15:00:00.000Z
Updated: 2024-09-17T03:43:56.081Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.