Skip to content

kaniko/docker-credential-acr-env

Trivy Image Scan

  • Image: kaniko/docker-credential-acr-env
  • Scan date: 2025-02-19

kaniko/docker-credential-acr-env (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/golang-jwt/jwt/v4 CVE-2024-51744 LOW v4.5.0 4.5.1
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.24.0 0.31.0
stdlib CVE-2024-34156 HIGH 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-45336 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2024-45341 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2025-22866 MEDIUM 1.22.5 1.22.12, 1.23.6, 1.24.0-rc.3
No Misconfigurations found

kaniko/docker-credential-ecr-login (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
stdlib CVE-2024-34156 HIGH 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-45336 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2024-45341 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2025-22866 MEDIUM 1.22.5 1.22.12, 1.23.6, 1.24.0-rc.3
No Misconfigurations found

kaniko/docker-credential-gcr (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/docker/docker CVE-2024-41110 CRITICAL v27.0.3+incompatible 23.0.15, 26.1.5, 27.1.1, 25.0.6
stdlib CVE-2024-34156 HIGH 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-45336 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2024-45341 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2025-22866 MEDIUM 1.22.5 1.22.12, 1.23.6, 1.24.0-rc.3
No Misconfigurations found

kaniko/executor (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/docker/docker CVE-2024-41110 CRITICAL v27.0.3+incompatible 23.0.15, 26.1.5, 27.1.1, 25.0.6
github.com/go-git/go-git/v5 CVE-2025-21613 CRITICAL v5.12.0 5.13.0
github.com/go-git/go-git/v5 CVE-2025-21614 HIGH v5.12.0 5.13.0
github.com/golang-jwt/jwt/v4 CVE-2024-51744 LOW v4.5.0 4.5.1
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.24.0 0.31.0
golang.org/x/net CVE-2024-45338 HIGH v0.26.0 0.33.0
google.golang.org/grpc GHSA-xr7q-jx4m-x55m LOW v1.64.0 1.64.1
stdlib CVE-2024-34156 HIGH 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-45336 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2024-45341 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2025-22866 MEDIUM 1.22.5 1.22.12, 1.23.6, 1.24.0-rc.3
No Misconfigurations found

kaniko/warmer (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/docker/docker CVE-2024-41110 CRITICAL v27.0.3+incompatible 23.0.15, 26.1.5, 27.1.1, 25.0.6
github.com/golang-jwt/jwt/v4 CVE-2024-51744 LOW v4.5.0 4.5.1
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.24.0 0.31.0
golang.org/x/net CVE-2024-45338 HIGH v0.26.0 0.33.0
google.golang.org/grpc GHSA-xr7q-jx4m-x55m LOW v1.64.0 1.64.1
stdlib CVE-2024-34156 HIGH 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM 1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-45336 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2024-45341 MEDIUM 1.22.5 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2025-22866 MEDIUM 1.22.5 1.22.12, 1.23.6, 1.24.0-rc.3
No Misconfigurations found