Skip to main content
New to Testkube? Unleash the power of cloud native testing in Kubernetes with Testkube. Get Started >

testkube-tw-toolkit-2.4.3_linux_arm64

digestsha256:da51da52ef5fb924ae36af0aa90f4b7fe4874f7bbed68886cf6bf941961c4ebe
vulnerabilitiescritical: 0 high: 13 medium: 10 low: 5
platformlinux/arm64
size47 MB
packages204
critical: 0 high: 6 medium: 1 low: 1 git 2.45.3-r0 (apk)

pkg:apk/alpine/git@2.45.3-r0?arch=aarch64&distro=alpine-3.20.6

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2025--48385

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.045%
EPSS Percentile14th percentile
Description

high : CVE--2025--46334

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.040%
EPSS Percentile12th percentile
Description

high : CVE--2025--27614

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.035%
EPSS Percentile10th percentile
Description

high : CVE--2025--46835

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.039%
EPSS Percentile11th percentile
Description

high : CVE--2025--48384

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score1.197%
EPSS Percentile78th percentile
Description

high : CVE--2024--52005

Affected range<=2.45.3-r0
Fixed versionNot Fixed
EPSS Score0.142%
EPSS Percentile35th percentile
Description

medium : CVE--2025--48386

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.023%
EPSS Percentile5th percentile
Description

low : CVE--2025--27613

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.049%
EPSS Percentile15th percentile
Description
critical: 0 high: 2 medium: 4 low: 0 libcurl 8.12.1-r0 (apk)

pkg:apk/alpine/libcurl@8.12.1-r0?arch=aarch64&distro=alpine-3.20.6&upstream=curl

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2025--9086

Affected range<8.14.1-r2
Fixed version8.14.1-r2
EPSS Score0.095%
EPSS Percentile27th percentile
Description

high : CVE--2025--5399

Affected range<8.14.1-r0
Fixed version8.14.1-r0
EPSS Score0.064%
EPSS Percentile20th percentile
Description

medium : CVE--2025--4947

Affected range<8.14.0-r0
Fixed version8.14.0-r0
EPSS Score0.017%
EPSS Percentile3rd percentile
Description

medium : CVE--2025--10148

Affected range<8.14.1-r2
Fixed version8.14.1-r2
EPSS Score0.070%
EPSS Percentile21st percentile
Description

medium : CVE--2025--5025

Affected range<8.14.0-r0
Fixed version8.14.0-r0
EPSS Score0.018%
EPSS Percentile3rd percentile
Description

medium : CVE--2025--10966

Affected range<=8.12.1-r0
Fixed versionNot Fixed
EPSS Score0.015%
EPSS Percentile2nd percentile
Description
critical: 0 high: 1 medium: 2 low: 0 libssl3 3.3.3-r0 (apk)

pkg:apk/alpine/libssl3@3.3.3-r0?arch=aarch64&distro=alpine-3.20.6&upstream=openssl

# tw-toolkit.Dockerfile (24:24)
FROM ${ALPINE_IMAGE}

high : CVE--2025--9230

Affected range<3.3.5-r0
Fixed version3.3.5-r0
EPSS Score0.025%
EPSS Percentile6th percentile
Description

medium : CVE--2025--9231

Affected range<3.3.5-r0
Fixed version3.3.5-r0
EPSS Score0.015%
EPSS Percentile2nd percentile
Description

medium : CVE--2025--9232

Affected range<3.3.5-r0
Fixed version3.3.5-r0
EPSS Score0.025%
EPSS Percentile6th percentile
Description
critical: 0 high: 1 medium: 2 low: 0 golang.org/x/crypto 0.41.0 (golang)

pkg:golang/golang.org/x/crypto@0.41.0

# tw-toolkit.Dockerfile (28:28)
COPY --from=build /app/testworkflow-init /init

high : CVE--2025--47913

Affected range<0.43.0
Fixed version0.43.0
EPSS Score0.018%
EPSS Percentile3rd percentile
Description

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

medium 5.3: CVE--2025--58181 Allocation of Resources Without Limits or Throttling

Affected range<0.45.0
Fixed version0.45.0
CVSS Score5.3
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score0.064%
EPSS Percentile20th percentile
Description

SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.

medium 5.3: CVE--2025--47914 Out-of-bounds Read

Affected range<0.45.0
Fixed version0.45.0
CVSS Score5.3
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score0.039%
EPSS Percentile11th percentile
Description

SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.

critical: 0 high: 1 medium: 1 low: 2 openssh-keygen 9.7_p1-r5 (apk)

pkg:apk/alpine/openssh-keygen@9.7_p1-r5?arch=aarch64&distro=alpine-3.20.6&upstream=openssh

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2023--51767

Affected range<=9.7_p1-r5
Fixed versionNot Fixed
EPSS Score0.010%
EPSS Percentile1st percentile
Description

medium : CVE--2025--32728

Affected range<=9.7_p1-r5
Fixed versionNot Fixed
EPSS Score0.048%
EPSS Percentile15th percentile
Description

low : CVE--2025--61985

Affected range<=9.7_p1-r5
Fixed versionNot Fixed
EPSS Score0.011%
EPSS Percentile1st percentile
Description

low : CVE--2025--61984

Affected range<=9.7_p1-r5
Fixed versionNot Fixed
EPSS Score0.006%
EPSS Percentile0th percentile
Description
critical: 0 high: 1 medium: 0 low: 0 c-ares 1.33.1-r0 (apk)

pkg:apk/alpine/c-ares@1.33.1-r0?arch=aarch64&distro=alpine-3.20.6

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2025--31498

Affected range<=1.33.1-r0
Fixed versionNot Fixed
EPSS Score0.135%
EPSS Percentile34th percentile
Description
critical: 0 high: 1 medium: 0 low: 0 libexpat 2.7.0-r0 (apk)

pkg:apk/alpine/libexpat@2.7.0-r0?arch=aarch64&distro=alpine-3.20.6&upstream=expat

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2025--59375

Affected range<2.7.2-r0
Fixed version2.7.2-r0
EPSS Score0.131%
EPSS Percentile33rd percentile
Description
critical: 0 high: 0 medium: 0 low: 2 ssl_client 1.36.1-r29 (apk)

pkg:apk/alpine/ssl_client@1.36.1-r29?arch=aarch64&distro=alpine-3.20.6&upstream=busybox

# tw-toolkit.Dockerfile (24:24)
FROM ${ALPINE_IMAGE}

low : CVE--2025--46394

Affected range<1.36.1-r31
Fixed version1.36.1-r31
EPSS Score0.017%
EPSS Percentile3rd percentile
Description

low : CVE--2024--58251

Affected range<1.36.1-r31
Fixed version1.36.1-r31
EPSS Score0.020%
EPSS Percentile4th percentile
Description