gitlab-webservice-ce-fipspackaged by Chainguard
packaged by Chainguard
Last changed
Request a free trial
Contact our team to test out this image for free. Please also indicate any other images you would like to evaluate.
Tag:
Severity:All
Expand | CVE ID | Severity | Package | Version | Last detected |
|---|---|---|---|---|---|
CVE-2021-23383 | Critical | handlebars | 1.0.0 | ||
CVE-2026-6100 | Critical | python-3.12 | 3.12.13-r8 | ||
CVE-2021-23369 | Critical | handlebars | 1.0.0 | ||
CVE-2026-8376 | Critical | perl | 5.42.2-r3 | ||
CVE-2026-5450 | Critical | glibc | 2.43-r8 | ||
CVE-2024-1485 | Critical | github.com/devfile/registry-support/registry-library | v0.0.0-20240521161747-89fc566cb024 | ||
CVE-2019-19919 | Critical | handlebars | 1.0.0 | ||
CVE-2020-7788 | High | ini | 1.0.0 | ||
CVE-2026-3298 | High | python-3.12 | 3.12.13-r8 | ||
CVE-2026-3644 | High | python-3.12 | 3.12.13-r8 | ||
CVE-2016-3956 | High | npm | 1.0.1 | ||
CVE-2026-4046 | High | glibc | 2.43-r8 | ||
CVE-2018-7408 | High | npm | 1.0.1 | ||
CVE-2026-4437 | High | glibc | 2.43-r8 | ||
CVE-2026-34040 | High | github.com/docker/docker | v28.0.0+incompatible | ||
CVE-2019-16777 | High | npm | 1.0.1 | ||
CVE-2026-43870 | High | thrift | 0.0.0-DEVELOPMENT | ||
CVE-2020-7712 | High | json | 1.0.0 | ||
GHSA-h6ch-v84p-w6p9 | High | diff | 1.0.0 | ||
CVE-2019-16776 | High | npm | 1.0.1 | ||
CVE-2019-16775 | High | npm | 1.0.1 | ||
CVE-2026-41316 | High | erb | 4.0.3 | ||
GHSA-2cf5-4w76-r9qv | High | handlebars | 1.0.0 | ||
CVE-2026-42306 | High | github.com/docker/docker | v28.0.0+incompatible | ||
CVE-2026-7210 | High | python-3.12 | 3.12.13-r8 | ||
GHSA-g9r4-xpmj-mj65 | High | handlebars | 1.0.0 | ||
CVE-2026-33540 | High | github.com/distribution/distribution/v3 | v3.0.0-20221208165359-362910506bc2 | ||
CVE-2026-4786 | High | python-3.12 | 3.12.13-r8 | ||
GHSA-q42p-pg8m-cqh6 | High | handlebars | 1.0.0 | ||
CVE-2026-35172 | High | github.com/distribution/distribution/v3 | v3.0.0-20221208165359-362910506bc2 | ||
CVE-2026-41636 | High | thrift | 0.0.0-DEVELOPMENT | ||
CVE-2026-0861 | High | glibc | 2.43-r8 | ||
CVE-2026-4775 | High | tiff | 4.7.1-r6 | ||
CVE-2026-41567 | High | github.com/docker/docker | v28.0.0+incompatible | ||
CVE-2026-4224 | High | python-3.12 | 3.12.13-r8 | ||
CVE-2026-9669 | High | python-3.12 | 3.12.13-r8 | ||
CVE-2026-5435 | High | glibc | 2.43-r8 | ||
CVE-2026-35611 | High | addressable | 2.8.7 | ||
GHSA-q2c6-c6pm-g3gh | High | handlebars | 1.0.0 | ||
CVE-2019-20920 | High | handlebars | 1.0.0 | ||
CVE-2025-15558 | High | github.com/docker/cli | v25.0.1+incompatible | ||
CVE-2026-5928 | High | glibc | 2.43-r8 | ||
CVE-2026-8328 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2026-41888 | Medium | github.com/distribution/distribution/v3 | v3.0.0-20221208165359-362910506bc2 | ||
CVE-2026-32700 | Medium | devise | 4.9.4 | ||
CVE-2026-40295 | Medium | devise | 4.9.4 | ||
CVE-2020-8911 | Medium | github.com/aws/aws-sdk-go | v1.55.7 | ||
GHSA-3h96-34p3-xm76 | Medium | graphql | 2.5.11 | ||
CVE-2024-36361 | Medium | pug | 1.0.0 | ||
CVE-2026-25765 | Medium | faraday | 2.13.4 | ||
CVE-2025-15367 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2026-44587 | Medium | carrierwave | 1.3.4 | ||
CVE-2025-67202 | Medium | sidekiq-cron | 2.3.1 | ||
CVE-2026-6019 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2026-41568 | Medium | github.com/docker/docker | v28.0.0+incompatible | ||
CVE-2021-21353 | Medium | pug | 1.0.0 | ||
CVE-2026-4438 | Medium | glibc | 2.43-r8 | ||
CVE-2020-15095 | Medium | npm | 1.0.1 | ||
CVE-2026-33635 | Medium | icalendar | 2.10.3 | ||
CVE-2023-49090 | Medium | carrierwave | 1.3.4 | ||
CVE-2025-12781 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2026-2297 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2026-44837 | Medium | view_component | 3.23.2 | ||
CVE-2026-6238 | Medium | glibc | 2.43-r8 | ||
CVE-2025-15366 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2024-29034 | Medium | carrierwave | 1.3.4 | ||
CVE-2026-33997 | Medium | github.com/docker/docker | v28.0.0+incompatible | ||
CVE-2026-44836 | Medium | view_component | 3.23.2 | ||
CVE-2026-44312 | Medium | css_parser | 1.14.0 | ||
CVE-2026-3446 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2026-7774 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2024-8796 | Medium | devise-two-factor | 5.1.0 | ||
CVE-2026-33532 | Medium | yaml | 1.0.0 | ||
CVE-2015-8861 | Medium | handlebars | 1.0.0 | ||
CVE-2026-1502 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2026-3276 | Medium | python-3.12 | 3.12.13-r8 | ||
CVE-2026-39824 | Low | golang.org/x/sys | v0.42.0 | ||
CVE-2013-4116 | Low | npm | 1.0.1 | ||
CVE-2026-24001 | Low | diff | 1.0.0 | ||
CVE-2026-33637 | Low | faraday | 2.13.4 | ||
GHSA-wx77-rp39-c6vg | Low | markdown | 1.0.0 | ||
CVE-2026-4519 | Low | python-3.12 | 3.12.13-r8 | ||
CVE-2025-13462 | Low | python-3.12 | 3.12.13-r8 | ||
CVE-2020-8912 | Low | github.com/aws/aws-sdk-go | v1.55.7 | ||
CVE-2026-3479 | Unknown | python-3.12 | 3.12.13-r8 |
Last updated:
The trusted source for open source
Talk to an expertProduct
Customers
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.