Skip to content

to be continuous

CNB_TRIVY_IMAGE

registry.hub.docker.com/aquasec/trivy:latest (alpine 3.20.3)¶

Trivy Image Scan

Image: registry.hub.docker.com/aquasec/trivy:latest (alpine 3.20.3)
Scan date: 2024-11-22

registry.hub.docker.com/aquasec/trivy:latest (alpine 3.20.3) (alpine)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
libcrypto3	CVE-2024-9143	LOW	3.3.2-r0	3.3.2-r1	https://access.redhat.com/security/cve/CVE-2024-9143 https://github.com/openssl/openssl/commit/72ae83ad214d2eef262461365a1975707f862712 https://github.com/openssl/openssl/commit/bc7e04d7c8d509fb78fc0e285aa948fb0da04700 https://github.com/openssl/openssl/commit/c0d3e4d32d2805f49bec30547f225bc4d092e1f4 https://github.com/openssl/openssl/commit/fdf6723362ca51bd883295efe206cb5b1cfa5154 https://github.openssl.org/openssl/extended-releases/commit/8efc0cbaa8ebba8e116f7b81a876a4123594d86a https://github.openssl.org/openssl/extended-releases/commit/9d576994cec2b7aa37a91740ea7e680810957e41 https://nvd.nist.gov/vuln/detail/CVE-2024-9143 https://openssl-library.org/news/secadv/20241016.txt https://www.cve.org/CVERecord?id=CVE-2024-9143
libssl3	CVE-2024-9143	LOW	3.3.2-r0	3.3.2-r1	https://access.redhat.com/security/cve/CVE-2024-9143 https://github.com/openssl/openssl/commit/72ae83ad214d2eef262461365a1975707f862712 https://github.com/openssl/openssl/commit/bc7e04d7c8d509fb78fc0e285aa948fb0da04700 https://github.com/openssl/openssl/commit/c0d3e4d32d2805f49bec30547f225bc4d092e1f4 https://github.com/openssl/openssl/commit/fdf6723362ca51bd883295efe206cb5b1cfa5154 https://github.openssl.org/openssl/extended-releases/commit/8efc0cbaa8ebba8e116f7b81a876a4123594d86a https://github.openssl.org/openssl/extended-releases/commit/9d576994cec2b7aa37a91740ea7e680810957e41 https://nvd.nist.gov/vuln/detail/CVE-2024-9143 https://openssl-library.org/news/secadv/20241016.txt https://www.cve.org/CVERecord?id=CVE-2024-9143
No Misconfigurations found

usr/local/bin/trivy (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
github.com/golang-jwt/jwt/v4	CVE-2024-51744	LOW	v4.5.0	4.5.1	https://access.redhat.com/security/cve/CVE-2024-51744 https://github.com/golang-jwt/jwt https://github.com/golang-jwt/jwt/commit/7b1c1c00a171c6c79bbdb40e4ce7d197060c1c2c https://github.com/golang-jwt/jwt/security/advisories/GHSA-29wx-vh33-7x7r https://nvd.nist.gov/vuln/detail/CVE-2024-51744 https://www.cve.org/CVERecord?id=CVE-2024-51744
No Misconfigurations found