Grype Vulnerabilities for ghcr.io/fluent/fluent-bit:4.2.2
Unfiltered vulnerability scan results for ghcr.io/fluent/fluent-bit:4.2.2 using Grype. Refer to the triaged vulnerabilities or VEX endpoint for more information on vulnerabilities that have been reviewed.
| Package | Version Installed | Vulnerability ID | Severity |
|---|---|---|---|
| libtasn1-6 | 4.20.0-2 | CVE-2025-13151 | High |
| libc6 | 2.41-12 | CVE-2026-0915 | High |
| libc6 | 2.41-12 | CVE-2026-0861 | High |
| libpq5 | 17.6-0+deb13u1 | CVE-2025-12818 | Medium |
| libcurl4t64 | 8.14.1-2+deb13u2 | CVE-2025-14819 | Medium |
| fluent-bit | 4.2.2 | CVE-2025-29478 | Medium |
| libcurl4t64 | 8.14.1-2+deb13u2 | CVE-2025-14524 | Medium |
| fluent-bit | 4.2.2 | CVE-2025-29477 | Medium |
| libcurl4t64 | 8.14.1-2+deb13u2 | CVE-2025-13034 | Medium |
| libpq5 | 17.6-0+deb13u1 | CVE-2025-12817 | Low |
| libgnutls30t64 | 3.8.9-3 | CVE-2011-3389 | Negligible |
| libldap2 | 2.6.10+dfsg-1 | CVE-2015-3276 | Negligible |
| libldap2 | 2.6.10+dfsg-1 | CVE-2017-17740 | Negligible |
| libc6 | 2.41-12 | CVE-2018-20796 | Negligible |
| libgssapi-krb5-2 | 1.21.3-5 | CVE-2018-5709 | Negligible |
| libk5crypto3 | 1.21.3-5 | CVE-2018-5709 | Negligible |
| libkrb5-3 | 1.21.3-5 | CVE-2018-5709 | Negligible |
| libkrb5support0 | 1.21.3-5 | CVE-2018-5709 | Negligible |
| libc6 | 2.41-12 | CVE-2019-1010025 | Negligible |
| libc6 | 2.41-12 | CVE-2019-9192 | Negligible |
| libgcrypt20 | 1.11.0-7 | CVE-2018-6829 | Negligible |
| libc6 | 2.41-12 | CVE-2019-1010024 | Negligible |
| libc6 | 2.41-12 | CVE-2010-4756 | Negligible |
| libc6 | 2.41-12 | CVE-2019-1010023 | Negligible |
| libgcrypt20 | 1.11.0-7 | CVE-2024-2236 | Negligible |
| libldap2 | 2.6.10+dfsg-1 | CVE-2020-15719 | Negligible |
| libgssapi-krb5-2 | 1.21.3-5 | CVE-2024-26458 | Negligible |
| libk5crypto3 | 1.21.3-5 | CVE-2024-26458 | Negligible |
| libkrb5-3 | 1.21.3-5 | CVE-2024-26458 | Negligible |
| libkrb5support0 | 1.21.3-5 | CVE-2024-26458 | Negligible |
| libc6 | 2.41-12 | CVE-2019-1010022 | Negligible |
| libsystemd0 | 257.9-1~deb13u1 | CVE-2023-31437 | Negligible |
| systemd | 257.9-1~deb13u1 | CVE-2023-31437 | Negligible |
| libldap2 | 2.6.10+dfsg-1 | CVE-2017-14159 | Negligible |
| libsystemd0 | 257.9-1~deb13u1 | CVE-2023-31438 | Negligible |
| systemd | 257.9-1~deb13u1 | CVE-2023-31438 | Negligible |
| libsystemd0 | 257.9-1~deb13u1 | CVE-2023-31439 | Negligible |
| systemd | 257.9-1~deb13u1 | CVE-2023-31439 | Negligible |
| libgssapi-krb5-2 | 1.21.3-5 | CVE-2024-26461 | Negligible |
| libk5crypto3 | 1.21.3-5 | CVE-2024-26461 | Negligible |
| libkrb5-3 | 1.21.3-5 | CVE-2024-26461 | Negligible |
| libkrb5support0 | 1.21.3-5 | CVE-2024-26461 | Negligible |
| libcurl4t64 | 8.14.1-2+deb13u2 | CVE-2025-15224 | Negligible |
| libsystemd0 | 257.9-1~deb13u1 | CVE-2013-4392 | Negligible |
| systemd | 257.9-1~deb13u1 | CVE-2013-4392 | Negligible |
| libcurl4t64 | 8.14.1-2+deb13u2 | CVE-2025-15079 | Negligible |
| libldap2 | 2.6.10+dfsg-1 | CVE-2026-22185 | Negligible |
| libcurl4t64 | 8.14.1-2+deb13u2 | CVE-2025-10966 | Negligible |
| libcurl4t64 | 8.14.1-2+deb13u2 | CVE-2025-14017 | Negligible |
| libc6 | 2.41-12 | CVE-2025-15281 | Unknown |
| libgnutls30t64 | 3.8.9-3 | CVE-2025-9820 | Unknown |