Skip to content

to be continuous

DCMP_IMAGE

to-be-continuous/doc

docker.io/library/docker:latest (alpine 3.23.3)¶

Trivy Image Scan

Image: docker.io/library/docker:latest (alpine 3.23.3)
Scan date: 2026-02-04

docker.io/library/docker:latest (alpine 3.23.3) (alpine)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/containerd (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/containerd-shim-runc-v2 (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/ctr (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/docker (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/docker-proxy (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/dockerd (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/runc (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
golang.org/x/net	CVE-2025-22870	MEDIUM	v0.35.0	0.36.0	http://www.openwall.com/lists/oss-security/2025/03/07/2 https://access.redhat.com/security/cve/CVE-2025-22870 https://github.com/golang/go/issues/71984 https://go-review.googlesource.com/q/project:net https://go.dev/cl/654697 https://go.dev/issue/71984 https://groups.google.com/g/golang-announce/c/4t3lzH3I0eI/m/b42ImqrBAQAJ https://nvd.nist.gov/vuln/detail/CVE-2025-22870 https://pkg.go.dev/vuln/GO-2025-3503 https://security.netapp.com/advisory/ntap-20250509-0007 https://security.netapp.com/advisory/ntap-20250509-0007/ https://ubuntu.com/security/notices/USN-7574-1 https://www.cve.org/CVERecord?id=CVE-2025-22870
golang.org/x/net	CVE-2025-22872	MEDIUM	v0.35.0	0.38.0	https://access.redhat.com/security/cve/CVE-2025-22872 https://github.com/advisories/GHSA-vvgc-356p-c3xw https://go.dev/cl/662715 https://go.dev/issue/73070 https://groups.google.com/g/golang-announce/c/ezSKR9vqbqA https://nvd.nist.gov/vuln/detail/CVE-2025-22872 https://pkg.go.dev/vuln/GO-2025-3595 https://security.netapp.com/advisory/ntap-20250516-0007 https://security.netapp.com/advisory/ntap-20250516-0007/ https://www.cve.org/CVERecord?id=CVE-2025-22872
No Misconfigurations found

usr/local/libexec/docker/cli-plugins/docker-buildx (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
github.com/sigstore/rekor	CVE-2026-23831	MEDIUM	v1.4.3	1.5.0	https://access.redhat.com/security/cve/CVE-2026-23831 https://github.com/sigstore/rekor https://github.com/sigstore/rekor/commit/39bae3d192bce48ef4ef2cbd1788fb5770fee8cd https://github.com/sigstore/rekor/releases/tag/v1.5.0 https://github.com/sigstore/rekor/security/advisories/GHSA-273p-m2cw-6833 https://nvd.nist.gov/vuln/detail/CVE-2026-23831 https://www.cve.org/CVERecord?id=CVE-2026-23831
github.com/sigstore/rekor	CVE-2026-24117	MEDIUM	v1.4.3	1.5.0	https://access.redhat.com/security/cve/CVE-2026-24117 https://github.com/sigstore/rekor https://github.com/sigstore/rekor/commit/60ef2bceba192c5bf9327d003bceea8bf1f8275f https://github.com/sigstore/rekor/releases/tag/v1.5.0 https://github.com/sigstore/rekor/security/advisories/GHSA-4c4x-jm2x-pf9j https://nvd.nist.gov/vuln/detail/CVE-2026-24117 https://www.cve.org/CVERecord?id=CVE-2026-24117
github.com/sigstore/sigstore	CVE-2026-24137	MEDIUM	v1.10.0	1.10.4	https://access.redhat.com/security/cve/CVE-2026-24137 https://github.com/sigstore/sigstore https://github.com/sigstore/sigstore/commit/8ec410a2993ea78083aecf0e473a85453039496e https://github.com/sigstore/sigstore/releases/tag/v1.10.4 https://github.com/sigstore/sigstore/security/advisories/GHSA-fcv2-xgw5-pqxf https://nvd.nist.gov/vuln/detail/CVE-2026-24137 https://www.cve.org/CVERecord?id=CVE-2026-24137
github.com/theupdateframework/go-tuf/v2	CVE-2026-23991	MEDIUM	v2.3.0	2.3.1	https://access.redhat.com/security/cve/CVE-2026-23991 https://github.com/theupdateframework/go-tuf https://github.com/theupdateframework/go-tuf/commit/73345ab6b0eb7e59d525dac17a428f043074cef6 https://github.com/theupdateframework/go-tuf/releases/tag/v2.3.1 https://github.com/theupdateframework/go-tuf/security/advisories/GHSA-846p-jg2w-w324 https://nvd.nist.gov/vuln/detail/CVE-2026-23991 https://www.cve.org/CVERecord?id=CVE-2026-23991
github.com/theupdateframework/go-tuf/v2	CVE-2026-23992	MEDIUM	v2.3.0	2.3.1	https://access.redhat.com/security/cve/CVE-2026-23992 https://github.com/theupdateframework/go-tuf https://github.com/theupdateframework/go-tuf/commit/b38d91fdbc69dfe31fe9230d97dafe527ea854a0 https://github.com/theupdateframework/go-tuf/releases/tag/v2.3.1 https://github.com/theupdateframework/go-tuf/security/advisories/GHSA-fphv-w9fq-2525 https://nvd.nist.gov/vuln/detail/CVE-2026-23992 https://www.cve.org/CVERecord?id=CVE-2026-23992
github.com/theupdateframework/go-tuf/v2	CVE-2026-24686	MEDIUM	v2.3.0	2.4.1	https://access.redhat.com/security/cve/CVE-2026-24686 https://github.com/theupdateframework/go-tuf https://github.com/theupdateframework/go-tuf/commit/d361e2ea24e427581343dee5c7a32b485d79fcc0 https://github.com/theupdateframework/go-tuf/security/advisories/GHSA-jqc5-w2xx-5vq4 https://nvd.nist.gov/vuln/detail/CVE-2026-24686 https://www.cve.org/CVERecord?id=CVE-2026-24686
No Misconfigurations found

usr/local/libexec/docker/cli-plugins/docker-compose (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
stdlib	CVE-2025-61726	HIGH	v1.24.11	1.24.12, 1.25.6	https://access.redhat.com/security/cve/CVE-2025-61726 https://go.dev/cl/736712 https://go.dev/issue/77101 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://nvd.nist.gov/vuln/detail/CVE-2025-61726 https://pkg.go.dev/vuln/GO-2026-4341 https://www.cve.org/CVERecord?id=CVE-2025-61726
stdlib	CVE-2025-61728	HIGH	v1.24.11	1.24.12, 1.25.6	http://www.openwall.com/lists/oss-security/2026/01/15/4 https://access.redhat.com/security/cve/CVE-2025-61728 https://go.dev/cl/736713 https://go.dev/issue/77102 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://nvd.nist.gov/vuln/detail/CVE-2025-61728 https://pkg.go.dev/vuln/GO-2026-4342 https://www.cve.org/CVERecord?id=CVE-2025-61728
stdlib	CVE-2025-61730	MEDIUM	v1.24.11	1.24.12, 1.25.6	https://go.dev/cl/724120 https://go.dev/issue/76443 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://nvd.nist.gov/vuln/detail/CVE-2025-61730 https://pkg.go.dev/vuln/GO-2026-4340
No Misconfigurations found