workflow-controller:3.4.18-16.3

Inactive branch 3.4! This artifact is no longer continuously scanned and new versions are no longer expected.

Signed

Registered 2 days ago

Signed

Version:

3.4.18

Revision:

16.3

Architecture:

x86_64

Size:

30.7 MB

Digest:

sha256:06af80394ba037c78f135bc8310381ce722e463172fdf5a4c418583021069081

Base image

SLE BCI-micro 15.7-56.15

Operating system

SLE 15.7

ID	Severity	Fixable	Package	Installed version	Fixed version
CVE-2025-32445	CRITICAL	Yes	github.com/argoproj/argo-events	v1.7.3	1.9.6
CVE-2026-33186	CRITICAL	Yes	google.golang.org/grpc	v1.60.1	1.79.3
CVE-2024-45337	CRITICAL	Yes	golang.org/x/crypto	v0.22.0	0.31.0
CVE-2025-30204	HIGH	Yes	github.com/golang-jwt/jwt/v4	v4.5.0	4.5.2
CVE-2025-15558	HIGH	Yes	github.com/docker/cli	v24.0.7+incompatible	29.2.0
CVE-2026-34986	HIGH	Yes	github.com/go-jose/go-jose/v3	v3.0.3	3.0.5
CVE-2026-34040	HIGH	Yes	github.com/docker/docker	v26.1.5+incompatible	29.3.1
CVE-2025-29786	HIGH	Yes	github.com/expr-lang/expr	v1.16.0	1.17.0
CVE-2025-22868	HIGH	Yes	golang.org/x/oauth2	v0.16.0	0.27.0
CVE-2025-68156	HIGH	Yes	github.com/expr-lang/expr	v1.16.0	1.17.7
CVE-2026-35469	HIGH	Yes	github.com/moby/spdystream	v0.2.0	0.5.1
CVE-2025-22869	HIGH	Yes	golang.org/x/crypto	v0.22.0	0.35.0
CVE-2026-33997	MEDIUM	Yes	github.com/docker/docker	v26.1.5+incompatible	29.3.1
CVE-2025-58181	MEDIUM	Yes	golang.org/x/crypto	v0.22.0	0.45.0
CVE-2025-22872	MEDIUM	Yes	golang.org/x/net	v0.23.0	0.38.0
CVE-2025-22870	MEDIUM	Yes	golang.org/x/net	v0.23.0	0.36.0
CVE-2024-24786	MEDIUM	Yes	google.golang.org/protobuf	v1.32.0	1.33.0
CVE-2025-47914	MEDIUM	Yes	golang.org/x/crypto	v0.22.0	0.45.0
CVE-2025-27144	MEDIUM	Yes	github.com/go-jose/go-jose/v3	v3.0.3	3.0.4
CVE-2024-51744	LOW	Yes	github.com/golang-jwt/jwt/v4	v4.5.0	4.5.1
CVE-2025-54410	LOW	Yes	github.com/docker/docker	v26.1.5+incompatible	25.0.13, 28.0.0