Skip to content

ghcr.io/terraform-linters/tflint-bundle:latest (alpine 3.18.3)

Trivy Image Scan

  • Image: ghcr.io/terraform-linters/tflint-bundle:latest (alpine 3.18.3)
  • Scan date: 2024-07-25

ghcr.io/terraform-linters/tflint-bundle:latest (alpine 3.18.3) (alpine)

Package Vulnerability ID Severity Installed Version Fixed Version Links
busybox CVE-2023-42363 MEDIUM 1.36.1-r2 1.36.1-r7
busybox CVE-2023-42364 MEDIUM 1.36.1-r2 1.36.1-r7
busybox CVE-2023-42365 MEDIUM 1.36.1-r2 1.36.1-r7
busybox CVE-2023-42366 MEDIUM 1.36.1-r2 1.36.1-r6
busybox-binsh CVE-2023-42363 MEDIUM 1.36.1-r2 1.36.1-r7
busybox-binsh CVE-2023-42364 MEDIUM 1.36.1-r2 1.36.1-r7
busybox-binsh CVE-2023-42365 MEDIUM 1.36.1-r2 1.36.1-r7
busybox-binsh CVE-2023-42366 MEDIUM 1.36.1-r2 1.36.1-r6
libcrypto3 CVE-2023-5363 HIGH 3.1.2-r0 3.1.4-r0
libcrypto3 CVE-2023-5678 MEDIUM 3.1.2-r0 3.1.4-r1
libcrypto3 CVE-2023-6129 MEDIUM 3.1.2-r0 3.1.4-r3
libcrypto3 CVE-2023-6237 MEDIUM 3.1.2-r0 3.1.4-r4
libcrypto3 CVE-2024-0727 MEDIUM 3.1.2-r0 3.1.4-r5
libcrypto3 CVE-2024-4603 MEDIUM 3.1.2-r0 3.1.5-r0
libcrypto3 CVE-2024-4741 MEDIUM 3.1.2-r0 3.1.6-r0
libcrypto3 CVE-2024-5535 MEDIUM 3.1.2-r0 3.1.6-r0
libcrypto3 CVE-2024-2511 LOW 3.1.2-r0 3.1.4-r6
libssl3 CVE-2023-5363 HIGH 3.1.2-r0 3.1.4-r0
libssl3 CVE-2023-5678 MEDIUM 3.1.2-r0 3.1.4-r1
libssl3 CVE-2023-6129 MEDIUM 3.1.2-r0 3.1.4-r3
libssl3 CVE-2023-6237 MEDIUM 3.1.2-r0 3.1.4-r4
libssl3 CVE-2024-0727 MEDIUM 3.1.2-r0 3.1.4-r5
libssl3 CVE-2024-4603 MEDIUM 3.1.2-r0 3.1.5-r0
libssl3 CVE-2024-4741 MEDIUM 3.1.2-r0 3.1.6-r0
libssl3 CVE-2024-5535 MEDIUM 3.1.2-r0 3.1.6-r0
libssl3 CVE-2024-2511 LOW 3.1.2-r0 3.1.4-r6
ssl_client CVE-2023-42363 MEDIUM 1.36.1-r2 1.36.1-r7
ssl_client CVE-2023-42364 MEDIUM 1.36.1-r2 1.36.1-r7
ssl_client CVE-2023-42365 MEDIUM 1.36.1-r2 1.36.1-r7
ssl_client CVE-2023-42366 MEDIUM 1.36.1-r2 1.36.1-r6
No Misconfigurations found

root/.tflint.d/plugins/tflint-ruleset-aws (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
golang.org/x/net CVE-2023-39325 HIGH v0.14.0 0.17.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.14.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.14.0 0.23.0
google.golang.org/grpc GHSA-m425-mq94-257g HIGH v1.57.0 1.56.3, 1.57.1, 1.58.3
google.golang.org/grpc CVE-2023-44487 MEDIUM v1.57.0 1.58.3, 1.57.1, 1.56.3
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.31.0 1.33.0
stdlib CVE-2024-24790 CRITICAL 1.20.7 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.7 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.7 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.7 1.21.9, 1.22.2
stdlib CVE-2023-39318 MEDIUM 1.20.7 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.7 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.7 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.7 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.7 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.7 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.7 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.7 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.7 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.7 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.7 1.21.12, 1.22.5
No Misconfigurations found

root/.tflint.d/plugins/tflint-ruleset-azurerm (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
golang.org/x/net CVE-2023-39325 HIGH v0.9.0 0.17.0
golang.org/x/net CVE-2023-3978 MEDIUM v0.9.0 0.13.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.9.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.9.0 0.23.0
google.golang.org/grpc GHSA-m425-mq94-257g HIGH v1.54.0 1.56.3, 1.57.1, 1.58.3
google.golang.org/grpc CVE-2023-44487 MEDIUM v1.54.0 1.58.3, 1.57.1, 1.56.3
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.30.0 1.33.0
stdlib CVE-2024-24790 CRITICAL 1.20.4 1.21.11, 1.22.4
stdlib CVE-2023-29403 HIGH 1.20.4 1.19.10, 1.20.5
stdlib CVE-2023-39325 HIGH 1.20.4 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.4 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.4 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.4 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.4 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.4 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.4 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.4 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.4 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.4 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.4 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.4 1.21.12, 1.22.5
No Misconfigurations found

root/.tflint.d/plugins/tflint-ruleset-google (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
golang.org/x/crypto CVE-2023-48795 MEDIUM v0.10.0 0.17.0
golang.org/x/net CVE-2023-39325 HIGH v0.11.0 0.17.0
golang.org/x/net CVE-2023-3978 MEDIUM v0.11.0 0.13.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.11.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.11.0 0.23.0
google.golang.org/grpc GHSA-m425-mq94-257g HIGH v1.55.0 1.56.3, 1.57.1, 1.58.3
google.golang.org/grpc CVE-2023-44487 MEDIUM v1.55.0 1.58.3, 1.57.1, 1.56.3
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.30.0 1.33.0
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

usr/local/bin/tflint (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/cloudflare/circl GHSA-9763-4f94-gfch HIGH v1.3.3 1.3.7
github.com/hashicorp/go-getter CVE-2024-3817 CRITICAL v1.7.1 1.7.4
github.com/hashicorp/go-getter CVE-2024-6257 HIGH v1.7.1 1.7.5
golang.org/x/crypto CVE-2023-48795 MEDIUM v0.12.0 0.17.0
golang.org/x/net CVE-2023-39325 HIGH v0.14.0 0.17.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.14.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.14.0 0.23.0
google.golang.org/grpc GHSA-m425-mq94-257g HIGH v1.57.0 1.56.3, 1.57.1, 1.58.3
google.golang.org/grpc CVE-2023-44487 MEDIUM v1.57.0 1.58.3, 1.57.1, 1.56.3
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.31.0 1.33.0
stdlib CVE-2024-24790 CRITICAL 1.21.0 1.21.11, 1.22.4
stdlib CVE-2023-39321 HIGH 1.21.0 1.21.1
stdlib CVE-2023-39322 HIGH 1.21.0 1.21.1
stdlib CVE-2023-39325 HIGH 1.21.0 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.21.0 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.21.0 1.21.9, 1.22.2
stdlib CVE-2023-39318 MEDIUM 1.21.0 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.21.0 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.21.0 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.21.0 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.21.0 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.21.0 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.21.0 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.21.0 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.21.0 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.21.0 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.21.0 1.21.12, 1.22.5
No Misconfigurations found