Approved changes feed: RSS · Atom

cpe:2.3:a:alpinelinux:abuild:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAlpinelinux (0463bb34-65a9-5d31-b141-285ac587051c)
ProductAbuild (fd82438f-0a68-5a36-b676-c93062f83471)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/alpinelinux/abuild purl2cpe 2026-06-01 10:12:52.106333
pkg:gitlab/alpinelinux/abuild purl2cpe 2026-06-01 10:12:52.106336

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-12875 vulnerable 2026-06-08 05:12:40.589746 Details available
Alpine Linux abuild through 3.4.0 allows an unprivileged member of the abuild group to add an untrusted package via a --keys-dir option that causes acceptance of an untrusted signing key.
Published: 2019-06-18T18:09:20.000Z
Updated: 2024-08-04T23:32:55.508Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.