Skip to content

to be continuous

BRU_IMAGE

to-be-continuous/doc

docker.io/library/node:lts-alpine (alpine 3.23.3)¶

Trivy Image Scan

Image: docker.io/library/node:lts-alpine (alpine 3.23.3)
Scan date: 2026-02-04

docker.io/library/node:lts-alpine (alpine 3.23.3) (alpine)¶

No Vulnerabilities found
No Misconfigurations found

Node.js (node-pkg)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
diff	CVE-2026-24001	LOW	8.0.2	8.0.3, 5.2.2, 4.0.4, 3.5.1	https://access.redhat.com/security/cve/CVE-2026-24001 https://github.com/kpdecker/jsdiff https://github.com/kpdecker/jsdiff/commit/15a1585230748c8ae6f8274c202e0c87309142f5 https://github.com/kpdecker/jsdiff/issues/653 https://github.com/kpdecker/jsdiff/pull/649 https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx https://nvd.nist.gov/vuln/detail/CVE-2026-24001 https://www.cve.org/CVERecord?id=CVE-2026-24001
glob	CVE-2025-64756	HIGH	10.4.5	11.1.0, 10.5.0	https://access.redhat.com/security/cve/CVE-2025-64756 https://github.com/isaacs/node-glob https://github.com/isaacs/node-glob/commit/1e4e297342a09f2aa0ced87fcd4a70ddc325d75f https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146 https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2 https://nvd.nist.gov/vuln/detail/CVE-2025-64756 https://www.cve.org/CVERecord?id=CVE-2025-64756
glob	CVE-2025-64756	HIGH	11.0.3	11.1.0, 10.5.0	https://access.redhat.com/security/cve/CVE-2025-64756 https://github.com/isaacs/node-glob https://github.com/isaacs/node-glob/commit/1e4e297342a09f2aa0ced87fcd4a70ddc325d75f https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146 https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2 https://nvd.nist.gov/vuln/detail/CVE-2025-64756 https://www.cve.org/CVERecord?id=CVE-2025-64756
tar	CVE-2026-23745	HIGH	7.5.1	7.5.3	https://access.redhat.com/security/cve/CVE-2026-23745 https://github.com/isaacs/node-tar https://github.com/isaacs/node-tar/commit/340eb285b6d986e91969a1170d7fe9b0face405e https://github.com/isaacs/node-tar/security/advisories/GHSA-8qq5-rm4j-mr97 https://nvd.nist.gov/vuln/detail/CVE-2026-23745 https://www.cve.org/CVERecord?id=CVE-2026-23745
tar	CVE-2026-23950	HIGH	7.5.1	7.5.4	https://access.redhat.com/security/cve/CVE-2026-23950 https://github.com/isaacs/node-tar https://github.com/isaacs/node-tar/commit/3b1abfae650056edfabcbe0a0df5954d390521e6 https://github.com/isaacs/node-tar/security/advisories/GHSA-r6q2-hw4h-h46w https://nvd.nist.gov/vuln/detail/CVE-2026-23950 https://www.cve.org/CVERecord?id=CVE-2026-23950
tar	CVE-2026-24842	HIGH	7.5.1	7.5.7	https://access.redhat.com/security/cve/CVE-2026-24842 https://github.com/isaacs/node-tar https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46 https://github.com/isaacs/node-tar/security/advisories/GHSA-34x7-hfp2-rc4v https://nvd.nist.gov/vuln/detail/CVE-2026-24842 https://www.cve.org/CVERecord?id=CVE-2026-24842
tar	CVE-2025-64118	MEDIUM	7.5.1	7.5.2	https://access.redhat.com/security/cve/CVE-2025-64118 https://github.com/isaacs/node-tar https://github.com/isaacs/node-tar/commit/5330eb04bc43014f216e5c271b40d5c00d45224d https://github.com/isaacs/node-tar/commit/5e1a8e638600d3c3a2969b4de6a6ec44fa8d74c9 https://github.com/isaacs/node-tar/issues/445 https://github.com/isaacs/node-tar/pull/446 https://github.com/isaacs/node-tar/security/advisories/GHSA-29xp-372q-xqph https://nvd.nist.gov/vuln/detail/CVE-2025-64118 https://www.cve.org/CVERecord?id=CVE-2025-64118
No Misconfigurations found