DirectorySecurity AdvisoriesPricing
Sign in
Directory
gitlab-toolbox-ce logo

gitlab-toolbox-ce

packaged by Chainguard

Last changed
Request a free trial

Contact our team to test out this image for free. Please also indicate any other images you would like to evaluate.

Tags
Overview
Comparison
Provenance
Specifications
SBOM
Vulnerabilities
Advisories

Expand
CVE ID
Severity
Package
Version
Last detected
CVE-2026-6100
Critical
python-3.12
3.12.13-r8
CVE-2026-39831
Critical
golang.org/x/crypto
v0.51.0
CVE-2019-19919
Critical
handlebars
1.0.0
CVE-2026-5450
Critical
glibc
2.43-r8
CVE-2026-39830
Critical
golang.org/x/crypto
v0.51.0
CVE-2026-42508
Critical
golang.org/x/crypto
v0.51.0
CVE-2021-23383
Critical
handlebars
1.0.0
CVE-2026-46595
Critical
golang.org/x/crypto
v0.51.0
CVE-2026-39833
Critical
golang.org/x/crypto
v0.51.0
CVE-2021-23369
Critical
handlebars
1.0.0
CVE-2026-8376
Critical
perl
5.42.2-r3
CVE-2024-1485
Critical
github.com/devfile/registry-support/registry-library
v0.0.0-20240521161747-89fc566cb024
CVE-2026-39832
Critical
golang.org/x/crypto
v0.51.0
CVE-2026-39834
Critical
golang.org/x/crypto
v0.51.0
CVE-2026-4775
High
tiff
4.7.1-r6
CVE-2026-3298
High
python-3.12
3.12.13-r8
CVE-2026-39829
High
golang.org/x/crypto
v0.51.0
CVE-2026-4786
High
python-3.12
3.12.13-r8
GHSA-537c-gmf6-5ccf
High
cryptography
46.0.7
CVE-2026-34040
High
github.com/docker/docker
v28.0.0+incompatible
GHSA-q2c6-c6pm-g3gh
High
handlebars
1.0.0
GHSA-q42p-pg8m-cqh6
High
handlebars
1.0.0
CVE-2026-46597
High
golang.org/x/crypto
v0.51.0
CVE-2026-42306
High
github.com/docker/docker
v28.0.0+incompatible
CVE-2019-20920
High
handlebars
1.0.0
CVE-2025-15558
High
github.com/docker/cli
v25.0.1+incompatible
CVE-2026-35172
High
github.com/distribution/distribution/v3
v3.0.0-20221208165359-362910506bc2
CVE-2020-7712
High
json
1.0.0
CVE-2026-7210
High
python-3.12
3.12.13-r8
CVE-2026-33540
High
github.com/distribution/distribution/v3
v3.0.0-20221208165359-362910506bc2
CVE-2026-35611
High
addressable
2.8.7
CVE-2026-4437
High
glibc
2.43-r8
GHSA-2cf5-4w76-r9qv
High
handlebars
1.0.0
CVE-2019-16775
High
npm
1.0.1
CVE-2026-5435
High
glibc
2.43-r8
CVE-2026-9669
High
python-3.12
3.12.13-r8
CVE-2026-43870
High
thrift
0.0.0-DEVELOPMENT
CVE-2026-0861
High
glibc
2.43-r8
CVE-2018-7408
High
npm
1.0.1
CVE-2016-3956
High
npm
1.0.1
CVE-2019-16776
High
npm
1.0.1
CVE-2026-41316
High
erb
4.0.3
CVE-2026-41567
High
github.com/docker/docker
v28.0.0+incompatible
CVE-2026-41636
High
thrift
0.0.0-DEVELOPMENT
CVE-2026-5928
High
glibc
2.43-r8
CVE-2019-16777
High
npm
1.0.1
CVE-2026-4224
High
python-3.12
3.12.13-r8
CVE-2026-4046
High
glibc
2.43-r8
CVE-2020-7788
High
ini
1.0.0
CVE-2026-3644
High
python-3.12
3.12.13-r8
GHSA-h6ch-v84p-w6p9
High
diff
1.0.0
GHSA-g9r4-xpmj-mj65
High
handlebars
1.0.0
CVE-2026-4438
Medium
glibc
2.43-r8
CVE-2015-8861
Medium
handlebars
1.0.0
CVE-2023-49090
Medium
carrierwave
1.3.4
CVE-2026-6019
Medium
python-3.12
3.12.13-r8
CVE-2021-21353
Medium
pug
1.0.0
CVE-2024-36361
Medium
pug
1.0.0
CVE-2026-33997
Medium
github.com/docker/docker
v28.0.0+incompatible
CVE-2026-40295
Medium
devise
4.9.4
CVE-2024-8796
Medium
devise-two-factor
5.1.0
CVE-2026-32700
Medium
devise
4.9.4
CVE-2026-39828
Medium
golang.org/x/crypto
v0.51.0
CVE-2026-44312
Medium
css_parser
1.14.0
CVE-2026-7774
Medium
python-3.12
3.12.13-r8
CVE-2026-6238
Medium
glibc
2.43-r8
CVE-2025-15367
Medium
python-3.12
3.12.13-r8
CVE-2026-3446
Medium
python-3.12
3.12.13-r8
CVE-2026-2297
Medium
python-3.12
3.12.13-r8
CVE-2026-8328
Medium
python-3.12
3.12.13-r8
CVE-2026-39827
Medium
golang.org/x/crypto
v0.51.0
CVE-2026-41888
Medium
github.com/distribution/distribution/v3
v3.0.0-20221208165359-362910506bc2
CVE-2026-33635
Medium
icalendar
2.10.3
CVE-2026-41568
Medium
github.com/docker/docker
v28.0.0+incompatible
CVE-2026-44587
Medium
carrierwave
1.3.4
GHSA-3h96-34p3-xm76
Medium
graphql
2.5.11
CVE-2025-67202
Medium
sidekiq-cron
2.3.1
CVE-2026-33532
Medium
yaml
1.0.0
CVE-2026-44836
Medium
view_component
3.23.2
CVE-2020-8911
Medium
github.com/aws/aws-sdk-go
v1.55.7
CVE-2025-15366
Medium
python-3.12
3.12.13-r8
CVE-2026-39835
Medium
golang.org/x/crypto
v0.51.0
CVE-2026-44837
Medium
view_component
3.23.2
CVE-2020-15095
Medium
npm
1.0.1
CVE-2026-1502
Medium
python-3.12
3.12.13-r8
CVE-2026-3276
Medium
python-3.12
3.12.13-r8
CVE-2026-25765
Medium
faraday
2.13.4
CVE-2026-46598
Medium
golang.org/x/crypto
v0.51.0
CVE-2025-12781
Medium
python-3.12
3.12.13-r8
CVE-2024-29034
Medium
carrierwave
1.3.4
CVE-2013-4116
Low
npm
1.0.1
CVE-2026-4519
Low
python-3.12
3.12.13-r8
CVE-2026-33637
Low
faraday
2.13.4
GHSA-wx77-rp39-c6vg
Low
markdown
1.0.0
CVE-2025-13462
Low
python-3.12
3.12.13-r8
CVE-2020-8912
Low
github.com/aws/aws-sdk-go
v1.55.7
CVE-2026-39824
Low
golang.org/x/sys
v0.42.0
CVE-2026-24001
Low
diff
1.0.0
CVE-2026-3479
Unknown
python-3.12
3.12.13-r8
Last updated:

The trusted source for open source

Talk to an expert
PrivacyTerms

Product

Chainguard ContainersChainguard LibrariesChainguard VMsChainguard OS PackagesChainguard ActionsChainguard Agent SkillsIntegrationsPricing

Solutions

FedRAMPPCI DSSCMMC 2.0SOC 2Golden ImagesCVE RemediationPublic SectorStartups

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsSupply Chain Security 101Chainguard CoursesDocumentationTrust CenterChainguard Slack Community

Company

About UsBlogOpen Source LeadershipPartnersNewsroomCareersLegal
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.