Skip to content

to be continuous

DCMP_IMAGE

to-be-continuous/doc

docker.io/library/docker:latest (alpine 3.23.0)¶

Trivy Image Scan

Image: docker.io/library/docker:latest (alpine 3.23.0)
Scan date: 2025-12-14

docker.io/library/docker:latest (alpine 3.23.0) (alpine)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
c-ares	CVE-2025-62408	MEDIUM	1.34.5-r0	1.34.6-r0	https://access.redhat.com/security/cve/CVE-2025-62408 https://github.com/c-ares/c-ares/commit/714bf5675c541bd1e668a8db8e67ce012651e618 https://github.com/c-ares/c-ares/security/advisories/GHSA-jq53-42q6-pqr5 https://nvd.nist.gov/vuln/detail/CVE-2025-62408 https://ubuntu.com/security/notices/USN-7925-1 https://www.cve.org/CVERecord?id=CVE-2025-62408
No Misconfigurations found

usr/local/bin/containerd (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
github.com/containernetworking/plugins	CVE-2025-67499	MEDIUM	v1.8.0	1.9.0	https://github.com/containernetworking/plugins https://github.com/containernetworking/plugins/commit/9b3772e1a7abf93cbb7c6526a28bc0d27b830e02 https://github.com/containernetworking/plugins/pull/1210 https://github.com/containernetworking/plugins/releases/tag/v1.9.0 https://github.com/containernetworking/plugins/security/advisories/GHSA-jv3w-x3r3-g6rm https://nvd.nist.gov/vuln/detail/CVE-2025-67499
github.com/opencontainers/selinux	CVE-2025-52881	HIGH	v1.12.0	1.13.0	http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322 http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3 https://access.redhat.com/errata/RHSA-2025:22011 https://access.redhat.com/security/cve/CVE-2025-52881 https://bugzilla.redhat.com/2404715 https://bugzilla.redhat.com/2407258 https://bugzilla.redhat.com/show_bug.cgi?id=2404715 https://bugzilla.redhat.com/show_bug.cgi?id=2407258 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52881 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58183 https://errata.almalinux.org/9/ALSA-2025-22011.html https://errata.rockylinux.org/RLSA-2025:22012 https://github.com/opencontainers/runc https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557 https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58 https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6 https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544 https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db https://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322 https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28 https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2 https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165 https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64 https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1 https://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3 https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51 https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480 https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2 https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r https://github.com/opencontainers/selinux/pull/237 https://github.com/opencontainers/selinux/releases/tag/v1.13.0 https://linux.oracle.com/cve/CVE-2025-52881.html https://linux.oracle.com/errata/ELSA-2025-22012.html https://nvd.nist.gov/vuln/detail/CVE-2025-52881 https://pkg.go.dev/github.com/cyphar/filepath-securejoin/pathrs-lite/procfs https://ubuntu.com/security/notices/USN-7851-1 https://www.cve.org/CVERecord?id=CVE-2025-52881 https://youtu.be/tGseJW_uBB8 https://youtu.be/y1PaBzxwRWQ
golang.org/x/crypto	CVE-2025-47914	MEDIUM	v0.41.0	0.45.0	https://go.dev/cl/721960 https://go.dev/issue/76364 https://go.googlesource.com/crypto https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA https://nvd.nist.gov/vuln/detail/CVE-2025-47914 https://pkg.go.dev/vuln/GO-2025-4135
golang.org/x/crypto	CVE-2025-58181	MEDIUM	v0.41.0	0.45.0	https://go.dev/cl/721961 https://go.dev/issue/76363 https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA https://nvd.nist.gov/vuln/detail/CVE-2025-58181 https://pkg.go.dev/vuln/GO-2025-4134
No Misconfigurations found

usr/local/bin/containerd-shim-runc-v2 (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/ctr (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
github.com/opencontainers/selinux	CVE-2025-52881	HIGH	v1.12.0	1.13.0	http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322 http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3 https://access.redhat.com/errata/RHSA-2025:22011 https://access.redhat.com/security/cve/CVE-2025-52881 https://bugzilla.redhat.com/2404715 https://bugzilla.redhat.com/2407258 https://bugzilla.redhat.com/show_bug.cgi?id=2404715 https://bugzilla.redhat.com/show_bug.cgi?id=2407258 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52881 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58183 https://errata.almalinux.org/9/ALSA-2025-22011.html https://errata.rockylinux.org/RLSA-2025:22012 https://github.com/opencontainers/runc https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557 https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58 https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6 https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544 https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db https://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322 https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28 https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2 https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165 https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64 https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1 https://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3 https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51 https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480 https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2 https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r https://github.com/opencontainers/selinux/pull/237 https://github.com/opencontainers/selinux/releases/tag/v1.13.0 https://linux.oracle.com/cve/CVE-2025-52881.html https://linux.oracle.com/errata/ELSA-2025-22012.html https://nvd.nist.gov/vuln/detail/CVE-2025-52881 https://pkg.go.dev/github.com/cyphar/filepath-securejoin/pathrs-lite/procfs https://ubuntu.com/security/notices/USN-7851-1 https://www.cve.org/CVERecord?id=CVE-2025-52881 https://youtu.be/tGseJW_uBB8 https://youtu.be/y1PaBzxwRWQ
No Misconfigurations found

usr/local/bin/docker (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/docker-proxy (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/dockerd (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/bin/runc (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
golang.org/x/net	CVE-2025-22870	MEDIUM	v0.35.0	0.36.0	http://www.openwall.com/lists/oss-security/2025/03/07/2 https://access.redhat.com/security/cve/CVE-2025-22870 https://github.com/golang/go/issues/71984 https://go-review.googlesource.com/q/project:net https://go.dev/cl/654697 https://go.dev/issue/71984 https://groups.google.com/g/golang-announce/c/4t3lzH3I0eI/m/b42ImqrBAQAJ https://nvd.nist.gov/vuln/detail/CVE-2025-22870 https://pkg.go.dev/vuln/GO-2025-3503 https://security.netapp.com/advisory/ntap-20250509-0007 https://security.netapp.com/advisory/ntap-20250509-0007/ https://ubuntu.com/security/notices/USN-7574-1 https://www.cve.org/CVERecord?id=CVE-2025-22870
golang.org/x/net	CVE-2025-22872	MEDIUM	v0.35.0	0.38.0	https://access.redhat.com/security/cve/CVE-2025-22872 https://github.com/advisories/GHSA-vvgc-356p-c3xw https://go.dev/cl/662715 https://go.dev/issue/73070 https://groups.google.com/g/golang-announce/c/ezSKR9vqbqA https://nvd.nist.gov/vuln/detail/CVE-2025-22872 https://pkg.go.dev/vuln/GO-2025-3595 https://security.netapp.com/advisory/ntap-20250516-0007 https://security.netapp.com/advisory/ntap-20250516-0007/ https://www.cve.org/CVERecord?id=CVE-2025-22872
No Misconfigurations found

usr/local/libexec/docker/cli-plugins/docker-buildx (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
golang.org/x/crypto	CVE-2025-47914	MEDIUM	v0.42.0	0.45.0	https://go.dev/cl/721960 https://go.dev/issue/76364 https://go.googlesource.com/crypto https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA https://nvd.nist.gov/vuln/detail/CVE-2025-47914 https://pkg.go.dev/vuln/GO-2025-4135
golang.org/x/crypto	CVE-2025-58181	MEDIUM	v0.42.0	0.45.0	https://go.dev/cl/721961 https://go.dev/issue/76363 https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA https://nvd.nist.gov/vuln/detail/CVE-2025-58181 https://pkg.go.dev/vuln/GO-2025-4134
stdlib	CVE-2025-61729	HIGH	v1.25.4	1.24.11, 1.25.5	https://access.redhat.com/security/cve/CVE-2025-61729 https://go.dev/cl/725920 https://go.dev/issue/76445 https://groups.google.com/g/golang-announce/c/8FJoBkPddm4 https://nvd.nist.gov/vuln/detail/CVE-2025-61729 https://pkg.go.dev/vuln/GO-2025-4155 https://www.cve.org/CVERecord?id=CVE-2025-61729
stdlib	CVE-2025-61727	MEDIUM	v1.25.4	1.24.11, 1.25.5	https://go.dev/cl/723900 https://go.dev/issue/76442 https://groups.google.com/g/golang-announce/c/8FJoBkPddm4 https://nvd.nist.gov/vuln/detail/CVE-2025-61727 https://pkg.go.dev/vuln/GO-2025-4175
No Misconfigurations found

usr/local/libexec/docker/cli-plugins/docker-compose (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
stdlib	CVE-2025-61729	HIGH	v1.24.9	1.24.11, 1.25.5	https://access.redhat.com/security/cve/CVE-2025-61729 https://go.dev/cl/725920 https://go.dev/issue/76445 https://groups.google.com/g/golang-announce/c/8FJoBkPddm4 https://nvd.nist.gov/vuln/detail/CVE-2025-61729 https://pkg.go.dev/vuln/GO-2025-4155 https://www.cve.org/CVERecord?id=CVE-2025-61729
stdlib	CVE-2025-61727	MEDIUM	v1.24.9	1.24.11, 1.25.5	https://go.dev/cl/723900 https://go.dev/issue/76442 https://groups.google.com/g/golang-announce/c/8FJoBkPddm4 https://nvd.nist.gov/vuln/detail/CVE-2025-61727 https://pkg.go.dev/vuln/GO-2025-4175
No Misconfigurations found