WIP sign images after build

[baksetercx]

No description provided.

[github-actions]

⚠️ Vulnerabilities detected in ghcr.io/3lvia/core/vulnerable-service:latest-cache ⚠️

Found in: ghcr.io/3lvia/core/vulnerable-service:latest-cache (debian 10.13)

glibc: stack-based buffer overflow in netgroup cache – HIGH

ID: CVE-2024-33599

Package Name: libc-bin

Installed Version: 2.28-10+deb10u3

nscd: Stack-based buffer overflow in netgroup cache

If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted
by client requests then a subsequent client request for netgroup data
may result in a stack-based buffer overflow. This flaw was introduced
in glibc 2.15 when the cache was added to nscd.

This vulnerability is only present in the nscd binary.

References:

• http://www.openwall.com/lists/oss-security/2024/07/22/5

• https://access.redhat.com/errata/RHSA-2024:3339

• https://access.redhat.com/security/cve/CVE-2024-33599

• https://bugzilla.redhat.com/2273404

• https://bugzilla.redhat.com/2277202

glibc: stack-based buffer overflow in netgroup cache – HIGH

ID: CVE-2024-33599

Package Name: libc6

Installed Version: 2.28-10+deb10u3

nscd: Stack-based buffer overflow in netgroup cache

If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted
by client requests then a subsequent client request for netgroup data
may result in a stack-based buffer overflow. This flaw was introduced
in glibc 2.15 when the cache was added to nscd.

This vulnerability is only present in the nscd binary.

References:

• http://www.openwall.com/lists/oss-security/2024/07/22/5

• https://access.redhat.com/errata/RHSA-2024:3339

• https://access.redhat.com/security/cve/CVE-2024-33599

• https://bugzilla.redhat.com/2273404

• https://bugzilla.redhat.com/2277202