{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ee19f4b3-1733-5d45-b2a8-c2462f5771f3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-transport-classes-kqueue", "version": "4.1.92.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3a01616e-7fac-55a3-a4dc-031a86b36238", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:901e02c2-af16-5bb6-9d84-e6de5af1a7c1", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c84f9561-2e62-545f-9c3b-ad59c6de86f0", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-transport-classes-kqueue 4.1.92.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ecd2b90-85ed-539d-8e36-890eecdc3bd0", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1357f9c-9568-5a64-8700-219af755669b", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f115bd5d-10fa-5bc5-94a0-6a05e49ae085", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:596c3f4e-a3f1-55aa-9fa8-1d1100092ea2", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56cc0a4a-684e-592f-8bc1-2dfdc41f7985", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84823b5a-fbdc-5995-8eec-a888897d6df9", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df6163dd-687d-571d-a81d-0c06b8803516", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87d4062d-60c5-55a0-9071-43a949b5c305", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a66dfa36-8636-5afd-9611-776822652d26", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5187ad8-5b24-5e4f-b9a9-686aae0a489f", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a3f78aa-a7ca-5786-a7d5-f8a47e4767e8", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cabd7cd8-3fb1-5083-90b5-a980694fca55", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.92.Final-tuxcare.1 of io.netty:netty-transport-classes-kqueue." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.92.Final-tuxcare.1" } ] }