Skip to content

registry.hub.docker.com/paketobuildpacks/builder:base (ubuntu 18.04)

Trivy Image Scan

  • Image: registry.hub.docker.com/paketobuildpacks/builder:base (ubuntu 18.04)
  • Scan date: 2024-07-25

registry.hub.docker.com/paketobuildpacks/builder:base (ubuntu 18.04) (ubuntu)

No Vulnerabilities found
No Misconfigurations found

(gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/containerd/containerd GHSA-7ww5-4wqc-m92c MEDIUM v1.7.0 1.6.26, 1.7.11
github.com/docker/distribution CVE-2023-2253 HIGH v2.8.1+incompatible 2.8.2-beta.1
github.com/docker/docker CVE-2024-24557 MEDIUM v23.0.4+incompatible 24.0.9, 25.0.2
github.com/docker/docker CVE-2024-29018 MEDIUM v23.0.4+incompatible 26.0.0-rc3, 25.0.5, 23.0.11
github.com/docker/docker GHSA-jq35-85cj-fj4p MEDIUM v23.0.4+incompatible 24.0.7, 23.0.8, 20.10.27
github.com/moby/buildkit CVE-2024-23652 CRITICAL v0.11.5 0.12.5
github.com/moby/buildkit CVE-2024-23653 CRITICAL v0.11.5 0.12.5
github.com/moby/buildkit CVE-2024-23651 HIGH v0.11.5 0.12.5
github.com/moby/buildkit CVE-2024-23650 MEDIUM v0.11.5 0.12.5
github.com/opencontainers/runc CVE-2024-21626 HIGH v1.1.7 1.1.12
golang.org/x/crypto CVE-2023-48795 MEDIUM v0.5.0 0.17.0
golang.org/x/net CVE-2023-39325 HIGH v0.8.0 0.17.0
golang.org/x/net CVE-2023-3978 MEDIUM v0.8.0 0.13.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.8.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.8.0 0.23.0
google.golang.org/grpc GHSA-m425-mq94-257g HIGH v1.53.0 1.56.3, 1.57.1, 1.58.3
google.golang.org/grpc CVE-2023-44487 MEDIUM v1.53.0 1.58.3, 1.57.1, 1.56.3
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.29.1 1.33.0
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_apache-tomcat/7.13.7/bin/helper (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_apache-tomcat/7.13.7/bin/main (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_apache-tomee/1.7.4/bin/helper (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_apache-tomee/1.7.4/bin/main (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_azure-application-insights/5.15.1/bin/helper (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_azure-application-insights/5.15.1/bin/main (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_bellsoft-liberica/10.2.6/bin/helper (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
golang.org/x/net CVE-2023-39325 HIGH v0.11.0 0.17.0
golang.org/x/net CVE-2023-3978 MEDIUM v0.11.0 0.13.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.11.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.11.0 0.23.0
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_bellsoft-liberica/10.2.6/bin/main (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
golang.org/x/net CVE-2023-39325 HIGH v0.11.0 0.17.0
golang.org/x/net CVE-2023-3978 MEDIUM v0.11.0 0.13.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.11.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.11.0 0.23.0
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

cnb/buildpacks/paketo-buildpacks_bundle-install/0.7.9/bin/run (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/anchore/stereoscope CVE-2024-24579 MEDIUM v0.0.0-20230412183729-8602f1afc574 0.0.1
github.com/cloudflare/circl GHSA-9763-4f94-gfch HIGH v1.3.3 1.3.7
github.com/containerd/containerd GHSA-7ww5-4wqc-m92c MEDIUM v1.7.0 1.6.26, 1.7.11
github.com/docker/docker CVE-2024-24557 MEDIUM v23.0.5+incompatible 24.0.9, 25.0.2
github.com/docker/docker CVE-2024-29018 MEDIUM v23.0.5+incompatible 26.0.0-rc3, 25.0.5, 23.0.11