Skip to content

to be continuous

TF_TFLINT_IMAGE

to-be-continuous/doc

ghcr.io/terraform-linters/tflint:latest (alpine 3.23.3)¶

Trivy Image Scan

Image: ghcr.io/terraform-linters/tflint:latest (alpine 3.23.3)
Scan date: 2026-04-01

ghcr.io/terraform-linters/tflint:latest (alpine 3.23.3) (alpine)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
zlib	CVE-2026-22184	HIGH	1.3.1-r2	1.3.2-r0	https://access.redhat.com/security/cve/CVE-2026-22184 https://github.com/madler/zlib https://github.com/madler/zlib/issues/1142 https://nvd.nist.gov/vuln/detail/CVE-2026-22184 https://seclists.org/fulldisclosure/2026/Jan/3 https://www.cve.org/CVERecord?id=CVE-2026-22184 https://www.vulncheck.com/advisories/zlib-untgz-global-buffer-overflow-in-tgzfname https://zlib.net/
zlib	CVE-2026-27171	MEDIUM	1.3.1-r2	1.3.2-r0	https://7asecurity.com/blog/2026/02/zlib-7asecurity-audit/ https://7asecurity.com/reports/pentest-report-zlib-RC1.1.pdf https://access.redhat.com/security/cve/CVE-2026-27171 https://github.com/madler/zlib/issues/904 https://github.com/madler/zlib/releases/tag/v1.3.2 https://nvd.nist.gov/vuln/detail/CVE-2026-27171 https://ostif.org/zlib-audit-complete/ https://www.cve.org/CVERecord?id=CVE-2026-27171
No Misconfigurations found

usr/local/bin/tflint (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
go.opentelemetry.io/otel/sdk	CVE-2026-24051	HIGH	v1.39.0	1.40.0	https://github.com/open-telemetry/opentelemetry-go https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53 https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq https://nvd.nist.gov/vuln/detail/CVE-2026-24051 https://pkg.go.dev/vuln/GO-2026-4394
google.golang.org/grpc	CVE-2026-33186	CRITICAL	v1.78.0	1.79.3	https://access.redhat.com/security/cve/CVE-2026-33186 https://github.com/grpc/grpc-go https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3 https://nvd.nist.gov/vuln/detail/CVE-2026-33186 https://www.cve.org/CVERecord?id=CVE-2026-33186
stdlib	CVE-2025-68121	CRITICAL	v1.25.5	1.24.13, 1.25.7, 1.26.0-rc.3	https://access.redhat.com/errata/RHSA-2026:4177 https://access.redhat.com/security/cve/CVE-2025-68121 https://bugzilla.redhat.com/2434432 https://bugzilla.redhat.com/2437111 https://bugzilla.redhat.com/show_bug.cgi?id=2434432 https://bugzilla.redhat.com/show_bug.cgi?id=2437111 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68121 https://errata.almalinux.org/9/ALSA-2026-4177.html https://errata.rockylinux.org/RLSA-2026:4177 https://go.dev/cl/737700 https://go.dev/issue/77217 https://groups.google.com/g/golang-announce/c/K09ubi9FQFk https://linux.oracle.com/cve/CVE-2025-68121.html https://linux.oracle.com/errata/ELSA-2026-5146.html https://nvd.nist.gov/vuln/detail/CVE-2025-68121 https://pkg.go.dev/vuln/GO-2026-4337 https://www.cve.org/CVERecord?id=CVE-2025-68121
stdlib	CVE-2025-61726	HIGH	v1.25.5	1.24.12, 1.25.6	https://access.redhat.com/errata/RHSA-2026:4177 https://access.redhat.com/security/cve/CVE-2025-61726 https://bugzilla.redhat.com/2434432 https://bugzilla.redhat.com/2437111 https://bugzilla.redhat.com/show_bug.cgi?id=2434432 https://bugzilla.redhat.com/show_bug.cgi?id=2437111 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68121 https://errata.almalinux.org/9/ALSA-2026-4177.html https://errata.rockylinux.org/RLSA-2026:4177 https://go.dev/cl/736712 https://go.dev/issue/77101 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://linux.oracle.com/cve/CVE-2025-61726.html https://linux.oracle.com/errata/ELSA-2026-5146.html https://nvd.nist.gov/vuln/detail/CVE-2025-61726 https://pkg.go.dev/vuln/GO-2026-4341 https://www.cve.org/CVERecord?id=CVE-2025-61726
stdlib	CVE-2025-61728	HIGH	v1.25.5	1.24.12, 1.25.6	http://www.openwall.com/lists/oss-security/2026/01/15/4 https://access.redhat.com/errata/RHSA-2026:3753 https://access.redhat.com/security/cve/CVE-2025-61728 https://bugzilla.redhat.com/2418462 https://bugzilla.redhat.com/2434431 https://bugzilla.redhat.com/2434432 https://bugzilla.redhat.com/2437111 https://bugzilla.redhat.com/show_bug.cgi?id=2418462 https://bugzilla.redhat.com/show_bug.cgi?id=2434431 https://bugzilla.redhat.com/show_bug.cgi?id=2434432 https://bugzilla.redhat.com/show_bug.cgi?id=2437111 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61728 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61729 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68121 https://errata.almalinux.org/9/ALSA-2026-3753.html https://errata.rockylinux.org/RLSA-2026:3337 https://go.dev/cl/736713 https://go.dev/issue/77102 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://linux.oracle.com/cve/CVE-2025-61728.html https://linux.oracle.com/errata/ELSA-2026-4672.html https://nvd.nist.gov/vuln/detail/CVE-2025-61728 https://pkg.go.dev/vuln/GO-2026-4342 https://www.cve.org/CVERecord?id=CVE-2025-61728
stdlib	CVE-2026-25679	HIGH	v1.25.5	1.25.8, 1.26.1	https://access.redhat.com/errata/RHSA-2026:5942 https://access.redhat.com/security/cve/CVE-2026-25679 https://bugzilla.redhat.com/2434433 https://bugzilla.redhat.com/2445356 https://errata.almalinux.org/9/ALSA-2026-5942.html https://go.dev/cl/752180 https://go.dev/issue/77578 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://linux.oracle.com/cve/CVE-2026-25679.html https://linux.oracle.com/errata/ELSA-2026-5942.html https://nvd.nist.gov/vuln/detail/CVE-2026-25679 https://pkg.go.dev/vuln/GO-2026-4601 https://www.cve.org/CVERecord?id=CVE-2026-25679
stdlib	CVE-2025-61730	MEDIUM	v1.25.5	1.24.12, 1.25.6	https://go.dev/cl/724120 https://go.dev/issue/76443 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://nvd.nist.gov/vuln/detail/CVE-2025-61730 https://pkg.go.dev/vuln/GO-2026-4340
stdlib	CVE-2026-27142	MEDIUM	v1.25.5	1.25.8, 1.26.1	https://access.redhat.com/security/cve/CVE-2026-27142 https://go.dev/cl/752081 https://go.dev/issue/77954 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://nvd.nist.gov/vuln/detail/CVE-2026-27142 https://pkg.go.dev/vuln/GO-2026-4603 https://www.cve.org/CVERecord?id=CVE-2026-27142
stdlib	CVE-2026-27139	LOW	v1.25.5	1.25.8, 1.26.1	https://access.redhat.com/security/cve/CVE-2026-27139 https://go.dev/cl/749480 https://go.dev/issue/77827 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://nvd.nist.gov/vuln/detail/CVE-2026-27139 https://pkg.go.dev/vuln/GO-2026-4602 https://www.cve.org/CVERecord?id=CVE-2026-27139
No Misconfigurations found