gitlab-toolbox-ce-fipspackaged by Chainguard
packaged by Chainguard
Last changed
Request a free trial
Contact our team to test out this image for free. Please also indicate any other images you would like to evaluate.
Tag:
Severity:All
Expand | CVE ID | Severity | Package | Version | Last detected |
|---|---|---|---|---|---|
CVE-2021-23369 | Critical | handlebars | 1.0.0 | ||
CVE-2019-19919 | Critical | handlebars | 1.0.0 | ||
CVE-2021-23383 | Critical | handlebars | 1.0.0 | ||
CVE-2025-32460 | Critical | graphicsmagick | 1.3.46-r1 | ||
CVE-2026-6100 | Critical | python-3.12 | 3.12.13-r3 | ||
CVE-2026-4775 | High | tiff | 4.7.1-r4 | ||
CVE-2026-34040 | High | github.com/docker/docker | v28.0.0+incompatible | ||
CVE-2026-35611 | High | addressable | 2.8.7 | ||
CVE-2026-35172 | High | github.com/distribution/distribution/v3 | v3.0.0-20221208165359-362910506bc2 | ||
CVE-2026-33540 | High | github.com/distribution/distribution/v3 | v3.0.0-20221208165359-362910506bc2 | ||
CVE-2026-4786 | High | python-3.12 | 3.12.13-r3 | ||
CVE-2026-3298 | High | python-3.12 | 3.12.13-r3 | ||
CVE-2026-5928 | High | glibc | 2.43-r6 | ||
CVE-2026-39882 | Medium | go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp | v1.40.0 | ||
CVE-2025-15367 | Medium | python-3.12 | 3.12.13-r3 | ||
CVE-2026-3644 | Medium | python-3.12 | 3.12.13-r3 | ||
CVE-2023-49090 | Medium | carrierwave | 1.3.4 | ||
CVE-2024-29034 | Medium | carrierwave | 1.3.4 | ||
CVE-2025-15366 | Medium | python-3.12 | 3.12.13-r3 | ||
CVE-2024-13176 | Medium | openssl-provider-fips-3.1.2 | 3.1.2-r5 | ||
CVE-2026-33635 | Medium | icalendar | 2.10.3 | ||
CVE-2026-32700 | Medium | devise | 4.9.4 | ||
CVE-2024-4603 | Medium | openssl-provider-fips-3.1.2 | 3.1.2-r5 | ||
CVE-2026-33532 | Medium | yaml | 1.0.0 | ||
CVE-2023-6237 | Medium | openssl-provider-fips-3.1.2 | 3.1.2-r5 | ||
CVE-2026-4224 | Medium | python-3.12 | 3.12.13-r3 | ||
CVE-2026-3446 | Medium | python-3.12 | 3.12.13-r3 | ||
CVE-2026-25765 | Medium | faraday | 2.13.4 | ||
CVE-2025-12781 | Medium | python-3.12 | 3.12.13-r3 | ||
CVE-2024-8796 | Medium | devise-two-factor | 5.1.0 | ||
CVE-2026-1502 | Medium | python-3.12 | 3.12.13-r3 | ||
CVE-2026-2297 | Medium | python-3.12 | 3.12.13-r3 | ||
CVE-2026-33997 | Medium | github.com/docker/docker | v28.0.0+incompatible | ||
CVE-2026-33306 | Medium | bcrypt | 3.1.21 | ||
GHSA-3xc5-wrhm-f963 | Medium | github.com/go-git/go-git/v5 | v5.17.1 | ||
GHSA-2j22-pr5w-6gq8 | Low | loofah | 2.25.0 | ||
GHSA-46fp-8f5p-pf2m | Low | loofah | 2.25.0 | ||
CVE-2025-13462 | Low | python-3.12 | 3.12.13-r3 | ||
GHSA-85xr-ghj6-6m46 | Unknown | openssl-provider-fips-3.1.2 | 3.1.2-r5 | ||
CVE-2026-3479 | Unknown | python-3.12 | 3.12.13-r3 | ||
GHSA-r9fv-h47r-823f | Unknown | openssl-provider-fips-3.1.2 | 3.1.2-r5 | ||
GHSA-hvc4-mjv4-5mw6 | Unknown | openssl-provider-fips-3.1.2 | 3.1.2-r5 |
Last updated:
The trusted source for open source
Talk to an expertProduct
Customers
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.