gitlab-toolbox-ce-fips
packaged by Chainguard

Last changed

Request a free trial

Contact our team to test out this image for free. Please also indicate any other images you would like to evaluate.

Tags

CVE ID	Severity	Package	Version
CVE-2026-6100	Critical	python-3.12	3.12.13-r8
CVE-2024-1485	Critical	github.com/devfile/registry-support/registry-library	v0.0.0-20240521161747-89fc566cb024
CVE-2026-39832	Critical	golang.org/x/crypto	v0.51.0
CVE-2019-19919	Critical	handlebars	1.0.0
CVE-2026-39834	Critical	golang.org/x/crypto	v0.51.0
CVE-2026-8376	Critical	perl	5.42.2-r3
CVE-2026-39830	Critical	golang.org/x/crypto	v0.51.0
CVE-2021-23383	Critical	handlebars	1.0.0
CVE-2021-23369	Critical	handlebars	1.0.0
CVE-2026-5450	Critical	glibc	2.43-r8
CVE-2026-39831	Critical	golang.org/x/crypto	v0.51.0
CVE-2026-39833	Critical	golang.org/x/crypto	v0.51.0
CVE-2026-46595	Critical	golang.org/x/crypto	v0.51.0
CVE-2026-42508	Critical	golang.org/x/crypto	v0.51.0
CVE-2019-20920	High	handlebars	1.0.0
CVE-2020-7788	High	ini	1.0.0
CVE-2026-4775	High	tiff	4.7.1-r6
CVE-2019-16777	High	npm	1.0.1
CVE-2026-41636	High	thrift	0.0.0-DEVELOPMENT
CVE-2026-9669	High	python-3.12	3.12.13-r8
CVE-2026-5928	High	glibc	2.43-r8
CVE-2026-43870	High	thrift	0.0.0-DEVELOPMENT
CVE-2026-3644	High	python-3.12	3.12.13-r8
CVE-2026-39829	High	golang.org/x/crypto	v0.51.0
CVE-2026-7210	High	python-3.12	3.12.13-r8
CVE-2026-4437	High	glibc	2.43-r8
CVE-2026-4786	High	python-3.12	3.12.13-r8
GHSA-537c-gmf6-5ccf	High	cryptography	46.0.7
GHSA-g9r4-xpmj-mj65	High	handlebars	1.0.0
CVE-2026-41316	High	erb	4.0.3
CVE-2026-4046	High	glibc	2.43-r8
CVE-2026-3298	High	python-3.12	3.12.13-r8
CVE-2026-5435	High	glibc	2.43-r8
CVE-2026-35172	High	github.com/distribution/distribution/v3	v3.0.0-20221208165359-362910506bc2
CVE-2026-41567	High	github.com/docker/docker	v28.0.0+incompatible
CVE-2026-35611	High	addressable	2.8.7
CVE-2026-33540	High	github.com/distribution/distribution/v3	v3.0.0-20221208165359-362910506bc2
CVE-2026-34040	High	github.com/docker/docker	v28.0.0+incompatible
CVE-2016-3956	High	npm	1.0.1
CVE-2026-46597	High	golang.org/x/crypto	v0.51.0
CVE-2019-16775	High	npm	1.0.1
CVE-2026-4224	High	python-3.12	3.12.13-r8
CVE-2020-7712	High	json	1.0.0
CVE-2025-15558	High	github.com/docker/cli	v25.0.1+incompatible
CVE-2026-0861	High	glibc	2.43-r8
CVE-2026-42306	High	github.com/docker/docker	v28.0.0+incompatible
CVE-2018-7408	High	npm	1.0.1
GHSA-h6ch-v84p-w6p9	High	diff	1.0.0
GHSA-2cf5-4w76-r9qv	High	handlebars	1.0.0
GHSA-q42p-pg8m-cqh6	High	handlebars	1.0.0
CVE-2019-16776	High	npm	1.0.1
GHSA-q2c6-c6pm-g3gh	High	handlebars	1.0.0
CVE-2026-46598	Medium	golang.org/x/crypto	v0.51.0
CVE-2025-67202	Medium	sidekiq-cron	2.3.1
CVE-2026-44587	Medium	carrierwave	1.3.4
CVE-2024-8796	Medium	devise-two-factor	5.1.0
CVE-2026-8328	Medium	python-3.12	3.12.13-r8
CVE-2026-6238	Medium	glibc	2.43-r8
CVE-2026-33997	Medium	github.com/docker/docker	v28.0.0+incompatible
CVE-2026-33532	Medium	yaml	1.0.0
CVE-2021-21353	Medium	pug	1.0.0
CVE-2025-12781	Medium	python-3.12	3.12.13-r8
CVE-2024-29034	Medium	carrierwave	1.3.4
CVE-2026-40295	Medium	devise	4.9.4
CVE-2026-44312	Medium	css_parser	1.14.0
CVE-2026-3276	Medium	python-3.12	3.12.13-r8
CVE-2026-32700	Medium	devise	4.9.4
CVE-2026-33635	Medium	icalendar	2.10.3
CVE-2026-44837	Medium	view_component	3.23.2
CVE-2026-25765	Medium	faraday	2.13.4
CVE-2026-41888	Medium	github.com/distribution/distribution/v3	v3.0.0-20221208165359-362910506bc2
CVE-2020-8911	Medium	github.com/aws/aws-sdk-go	v1.55.7
CVE-2025-15367	Medium	python-3.12	3.12.13-r8
GHSA-3h96-34p3-xm76	Medium	graphql	2.5.11
CVE-2025-15366	Medium	python-3.12	3.12.13-r8
CVE-2020-15095	Medium	npm	1.0.1
CVE-2026-1502	Medium	python-3.12	3.12.13-r8
CVE-2026-39828	Medium	golang.org/x/crypto	v0.51.0
CVE-2026-41568	Medium	github.com/docker/docker	v28.0.0+incompatible
CVE-2015-8861	Medium	handlebars	1.0.0
CVE-2026-7774	Medium	python-3.12	3.12.13-r8
CVE-2026-2297	Medium	python-3.12	3.12.13-r8
CVE-2023-49090	Medium	carrierwave	1.3.4
CVE-2026-39827	Medium	golang.org/x/crypto	v0.51.0
CVE-2026-3446	Medium	python-3.12	3.12.13-r8
CVE-2026-4438	Medium	glibc	2.43-r8
CVE-2024-36361	Medium	pug	1.0.0
CVE-2026-39835	Medium	golang.org/x/crypto	v0.51.0
CVE-2026-6019	Medium	python-3.12	3.12.13-r8
CVE-2026-44836	Medium	view_component	3.23.2
CVE-2026-24001	Low	diff	1.0.0
GHSA-wx77-rp39-c6vg	Low	markdown	1.0.0
CVE-2013-4116	Low	npm	1.0.1
CVE-2020-8912	Low	github.com/aws/aws-sdk-go	v1.55.7
CVE-2025-13462	Low	python-3.12	3.12.13-r8
CVE-2026-39824	Low	golang.org/x/sys	v0.42.0
CVE-2026-33637	Low	faraday	2.13.4
CVE-2026-4519	Low	python-3.12	3.12.13-r8
CVE-2026-3479	Unknown	python-3.12	3.12.13-r8

Last updated:

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

gitlab-toolbox-ce-fips
packaged by Chainguard

The trusted source for open source

Product

Solutions

Customers

Resources

Company