Cloudsmith - Repositories - Kurrent (eventstore) - kurrent-latest (kurrent-latest) - kurrentdb-operator

Package Search Help

You can use boolean logic (e.g. AND/OR/NOT) for complex search queries. For more help and examples, see the search documentation.

Search by package name:
my-package _(implicit)
name:my-package _(explicit)

Search by package filename:
filename:my-package.ext

Search by package tag:
tag:latest

Search by package version:
version:1.0.0 prerelease:true _{(prereleases)}
prerelease:false _{(no prereleases)}

Search by package architecture:
architecture:x86_64

Search by package distribution:
distribution:el

Search by package license:
license:MIT

Search by package format:
format:deb

Search by package status:
status:in_progress

Search by package file checksum:
checksum:5afba

Search by package security status:
severity:critical

Search by package vulnerabilities:
vulnerabilities:>1
vulnerabilities:<1000

Search by # of package downloads:
downloads:>8
downloads:<100

Search by package type:
type:binary
type:source

Search by package size (bytes):
size:>50000
size:<10000

Search by dependency name/version:
dependency:log4j
dependency:log4j=1.0.0
dependency:log4j>1.0.0

Search by uploaded date:
uploaded:>"1 day ago"
uploaded:<"August 14, 2022 EST"

Search by entitlement token (identifier):
entitlement:3lKPVJPosCsY

Search by policy violation:
policy_violated:true
deny_policy_violated:true
license_policy_violated:true
vulnerability_policy_violated:true

Search by repository:
repository:repo-name

Search by last download date:
last_downloaded:<"30 days ago"
last_downloaded:>"August 14, 2022 EST"

Search queries for all Debian-specific (and related) package types

Search by component:
deb_component:unstable

Search queries for all Maven-specific (and related) package types

Search by group ID:
maven_group_id:org.apache

Search queries for all Docker-specific (and related) package types

Search by image digest:
docker_image_digest:sha256:7c5..6d4
(full hashref only)

Search by layer digest:
docker_layer_digest:sha256:4c4..ae4
(full hashref only)

Search queries for all Generic-specific package types

Search by file path:
generic_filepath:path/to/file.txt

Search by directory:
generic_directory:path/to

Field type modifiers (depending on the type, you can influence behaviour)

For all queries, you can use:
~foo for negation

For string queries, you can use:
^foo to anchor to start of term
foo$ to anchor to end of term
foo*bar for fuzzy matching

For number/date or version queries, you can use:
>foo for values greater than
>=foo for values greater / equal
<foo for values less than
<=foo for values less / equal

Need a secure and centralised artifact repository to deliver Alpine, Cargo, CocoaPods, Composer, Conan, Conda, CRAN, Dart, Debian, Docker, Generic, Go, Helm, Hex, HuggingFace, LuaRocks, Maven, MCP, npm, NuGet, P2, Python, RedHat, Ruby, Swift, Terraform, Vagrant, VSX, Raw & More packages?

Cloudsmith is the new standard in Package / Artifact Management and Software Distribution.

With support for all major package formats, you can trust us to manage your software supply chain.

Start My Free Trial

Set Me Up

Public — eventstore (Kurrent) / kurrent-latest

A certifiably-awesome public package repository curated by Kurrent, hosted by Cloudsmith.

kurrentdb-operator 3ae2d1e1d7e621d9c4ca9c44ac9…

Download

One-liner (summary)

A certifiably-awesome package curated by ryan-b, hosted by Cloudsmith.

Description

A certifiably-awesome package curated by ryan-b, hosted by Cloudsmith.

License

Unknown

Size

21.7 MB

Downloads

114

Tags

image amd64 linux

Status	Completed
Checksum (MD5)	10f13f16e088761430c05e8f0d0ca251
Checksum (SHA-1)	b3be318039035fea38ed98063e8eb34c1f24e00f
Checksum (SHA-256)	3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f831521659b1a5874f1a89579e5f
Checksum (SHA-512)	88a1d16ec6276946c88a3aa3a0faabe1ed5385702e728897ca4108ff09193af7c9…
GPG Signature	Download
GPG Fingerprint	02a89004460aa252035d6b7d094442d90ad50bcd
Storage Region	Dublin, Ireland
Type	Binary (contains binaries and binary artifacts)
Uploaded At	5 months, 3 weeks ago
Uploaded By
Slug Id	kurrentdb-operator-v5jr
Unique Id	TIVMzniEKKhC
Version (Raw)	3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f831521659b1a5874f1a89579e5f
Version (Parsed)	Type: Unknown
	docker-specific metadata
Image Digest	sha256:3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f831521659b1a5874f1a89579e5f
Config Digest	sha256:f75cf7602111147ab906facc47db5a388266d821dc229a9a001f71ec01102e46
V1 OCI Index Digest	sha256:e9f332cce26b4a6e259d4e9e99a1955a4786a0a3a21f79f28aa6c4c40479f8b2
V1 Distribution (Signed) Digest	sha256:f9da5e6f47ab125e1e05b9aac733caabe820bcb04511c0992cf76e627d9feb00
V1 OCI Digest	sha256:fd6c3a626c35d1f5f42172561972be4ffbe4fff9a809f132426b5bc197b7f494
V2 Distribution List Digest	sha256:40ebf407debb622b5c8beabd2d95261b1f56c27a590fd54722df3a63233c63c1
V1 Distribution Digest	sha256:4c775d2acc8ae5f1fa56b6dba5e4f61fb3b2384e08dd74d43d7a9b581dec0df1
V2 Distribution Digest	sha256:3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f831521659b1a5874f1a89579e5f
	extended metadata
Manifest Type	V2 Distribution
Architecture	amd64
Config	Entrypoint /kurrentdb-operator Env PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin Labels 'version' '1.5.0' Labels 'vcs-type' 'git' Labels 'vendor' 'Kurrent, Inc' Labels 'architecture' 'x86_64' Labels 'build-date' '2025-12-18T09:11:47Z' Labels 'com.redhat.component' 'ubi8-micro-container' Labels 'com.redhat.license_terms' 'https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI' Labels 'cpe' 'cpe:/a:redhat:enterprise_linux:8::appstream' Labels 'description' 'Deploys and manages KurrentDB within Kubernetes.' Labels 'distribution-scope' 'public' Labels 'io.buildah.version' '1.41.4' Labels 'io.k8s.description' 'Very small image which doesn't install the package manager.' Labels 'io.k8s.display-name' 'Red Hat Universal Base Image 8 Micro' Labels 'maintainer' 'Kurrent, Inc' Labels 'name' 'kurrentdb-operator' Labels 'org.opencontainers.image.created' '2025-12-18T09:11:47Z' Labels 'org.opencontainers.image.revision' '9127d650c356830945617e418b5d99ecc4c33c7c' Labels 'release' '4a061eca' Labels 'summary' 'The KurrentDB Operator.' Labels 'url' 'https://catalog.redhat.com/en/search?searchType=containers' Labels 'vcs-ref' '9127d650c356830945617e418b5d99ecc4c33c7c' User 65532:65532 Working Dir /
Created	2025-12-23 18:15:05 UTC
Os	linux

This package was uploaded with the following V2 Distribution manifest:

{
  "schemaVersion": 2,
  "mediaType": "application/vnd.docker.distribution.manifest.v2+json",
  "config": {
    "mediaType": "application/vnd.docker.container.image.v1+json",
    "digest": "sha256:d8d63e822a2142d7225a3a07934ef83525e86fac91d6f0f292f680f14ed8163a",
    "size": 6509
  },
  "layers": [
    {
      "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
      "digest": "sha256:9a988cf43e5f62149ceccfabe107eef8c59ed06a4af2174376183111d0a97f2b",
      "size": 11358877
    },
    {
      "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
      "digest": "sha256:8252c56ef7920834a46cdcdb644cdf5cb46b2521929b997e4baf71119048491c",
      "size": 1793
    },
    {
      "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
      "digest": "sha256:f1849a3b776849ebdf0dfff1a0ed62160a22d18769e7696a9ae354e2677a86bf",
      "size": 11436334
    }
  ]
}

	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL maintainer="Red Hat, Inc."	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL vendor="Red Hat, Inc."	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL url="https://catalog.redhat.com/en/search?searchType=containers"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL com.redhat.component="ubi8-micro-container"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL name="ubi8/ubi-micro"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL version="8.10"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL cpe="cpe:/a:redhat:enterprise_linux:8::appstream"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL distribution-scope="public"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL com.redhat.license_terms="https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL summary="ubi8 micro image"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL description="Very small image which doesn't install the package manager."	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL io.k8s.description="Very small image which doesn't install the package manager."	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL io.k8s.display-name="Red Hat Universal Base Image 8 Micro"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL io.openshift.expose-services=""	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY dir:1ae48d7e7a5c475e1e84384a2508a81d475ff67d96269579b3a3dc1220c32f43 in /	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:67f65df33ff6c09984969b192c50b78072a88c5655e380e734315d0229c75aa1 in /etc/yum.repos.d/	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) CMD /bin/sh	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:518c885a82749a6265363266bee66395b7dce67072656837d42700d947fc7945 in /usr/share/buildinfo/content-sets.json	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:518c885a82749a6265363266bee66395b7dce67072656837d42700d947fc7945 in /root/buildinfo/content_manifests/content-sets.json	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:5c907e5f995ca4bed6df4016958f5d07c7318c9be736aa4e9f10b0d8ff5d617d in /usr/share/buildinfo/labels.json	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:5c907e5f995ca4bed6df4016958f5d07c7318c9be736aa4e9f10b0d8ff5d617d in /root/buildinfo/labels.json	32 bytes
	Digest: sha256:9a988cf43e5f62149ceccfabe107eef8c59ed06a4af2174376183111d0a97f2b Command: /bin/sh -c #(nop) LABEL "architecture"="x86_64" "vcs-type"="git" "vcs-ref"="9127d650c356830945617e418b5d99ecc4c33c7c" "org.opencontainers.image.revision"="9127d650c356830945617e418b5d99ecc4c33c7c" "build-date"="2025-12-18T09:11:47Z" "org.opencontainers.image.created"="2025-12-18T09:11:47Z" "release"="1766049072"org.opencontainers.image.revision=9127d650c356830945617e418b5d99ecc4c33c7c,org.opencontainers.image.created=2025-12-18T09:11:47Z	10.8 MB
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ARG TARGETOS=linux	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ARG TARGETARCH=amd64	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: WORKDIR /	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: USER 65532:65532	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENTRYPOINT ["/kurrentdb-operator"]	32 bytes
	Digest: sha256:8252c56ef7920834a46cdcdb644cdf5cb46b2521929b997e4baf71119048491c Command: COPY licenses /licenses # buildkit	1.8 KB
	Digest: sha256:f1849a3b776849ebdf0dfff1a0ed62160a22d18769e7696a9ae354e2677a86bf Command: COPY linux/amd64 /kurrentdb-operator # buildkit	10.9 MB

kurrentdb-operator 803d09ed95c7cd3a02ce886a98cd1a141276198…	image arm64 linux 19.5 MB — 7 months ago	58
kurrentdb-operator 5d766239ca36070230e3ece884d3a9a914d8a12…	image amd64 linux 21.8 MB — 7 months ago	57
kurrentdb-operator cf5a93ed29447065b973afe1828a7c036b92915…	image amd64 linux 11.7 MB — 7 months, 3 weeks ago	156
kurrentdb-operator 40fcec2a5ab7230879faa9db3ca225151b24392…	image amd64 linux 21.8 MB — 7 months, 3 weeks ago	13
kurrentdb-operator 44a357ce176d1fa3cf687a61c9d452542017f30…	image amd64 linux 14.8 MB — 8 months ago	208
kurrentdb-operator 86e785f69b81cc341bebf14215f42aa9ad012f3…	image arm64 linux 13.3 MB — 8 months ago	13
kurrentdb-operator 7787c809dae2971a296f5dd232e705b9507a8e8…	image arm64 linux 13.3 MB — 8 months, 1 week ago	17
kurrentdb-operator d6feb0cc639a21611f6ab97c76f6ac0f19571a4…	image amd64 linux 14.8 MB — 8 months, 1 week ago	114
kurrentdb-operator dd2e09f3d95f8c00e1b17e6d79dffd1ed0f3932…	image arm64 linux 13.4 MB — 8 months, 3 weeks ago	15
kurrentdb-operator ebb80ec88390bc0f2c50ac9f93a7e6821154584…	image amd64 linux 14.7 MB — 8 months, 3 weeks ago	77
kurrentdb-operator c3e2ba5b00981c5554feec81112f7f6598369d1…	image amd64 linux 29.2 MB — 9 months, 3 weeks ago	90
kurrentdb-operator 5d0f1f936b63cd167deff3780310dc3180994d3…	image arm64 linux 27.4 MB — 9 months, 3 weeks ago	12
kurrentdb-operator 7320325684ada81d221628cc4d510d36855d147…	image arm64 linux 27.5 MB — 9 months, 4 weeks ago	14
kurrentdb-operator 5f8be3f12b7a48e244b2e1c372ebe7908f564f4…	image amd64 linux 29.2 MB — 9 months, 4 weeks ago	13
kurrentdb-operator 3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f83…	image amd64 linux 21.7 MB — 5 months, 3 weeks ago	114
kurrentdb-operator 29ee03923ac4fd8df9d04159c30a4babf004d13…	image amd64 linux 11.7 MB — 5 months, 3 weeks ago	403
kurrentdb-operator 1fef404277f581b9c3cdaf8ab55ee8c1eb16d11…	image arm64 linux 10.4 MB — 7 months, 3 weeks ago	23
kurrentdb-operator 396c0083981a777393a9f40cbe24c00238623a3…	image arm64 linux 19.5 MB — 7 months, 3 weeks ago	13
kurrentdb-operator 0ff5c6fceba593f71b583af906bcfd179874c4b…	image amd64 linux 30.0 MB — 11 months, 1 week ago	418
kurrentdb-operator 0c7d6b343e253eac50dd31b98a06162fa1cadbe…	image arm64 linux 28.2 MB — 1 year, 1 month ago	98

Only packages within the same repository are displayed. The current package you're viewing is highlighted.

Last scanned

5 months, 3 weeks ago

Scan result

Vulnerable

Vulnerability count

Max. severity

High

Target:	TIVMzniEKKhC.sbom-cyclonedx.json (redhat 8.10)
MEDIUM	CVE-2025-5278: coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitive data. Package Name: coreutils-single Installed Version: 8.30-15.el8 Fixed Version: References: www.openwall.com www.openwall.com www.openwall.com access.redhat.com bugzilla.redhat.com cgit.git.savannah.gnu.org cgit.git.savannah.gnu.org nvd.nist.gov security-tracker.debian.org www.cve.org
MEDIUM	CVE-2018-19217: ncurses: Null pointer dereference at function _nc_name_match In ncurses, possibly a 6.x version, there is a NULL pointer dereference at the function _nc_name_match that will lead to a denial of service attack. NOTE: the original report stated version 6.1, but the issue did not reproduce for that version according to the maintainer or a reliable third-party Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com bugzilla.redhat.com lists.gnu.org nvd.nist.gov www.cve.org
MEDIUM	CVE-2018-19217: ncurses: Null pointer dereference at function _nc_name_match In ncurses, possibly a 6.x version, there is a NULL pointer dereference at the function _nc_name_match that will lead to a denial of service attack. NOTE: the original report stated version 6.1, but the issue did not reproduce for that version according to the maintainer or a reliable third-party Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com bugzilla.redhat.com lists.gnu.org nvd.nist.gov www.cve.org
LOW	CVE-2018-20657: libiberty: Memory leak in demangle_template function resulting in a denial of service The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a crafted string, leading to a denial of service (memory consumption), as demonstrated by cxxfilt, a related issue to CVE-2018-12698. Package Name: libgcc Installed Version: 8.5.0-28.el8_10 Fixed Version: References: www.securityfocus.com access.redhat.com access.redhat.com gcc.gnu.org linux.oracle.com linux.oracle.com nvd.nist.gov support.f5.com www.cve.org
LOW	CVE-2019-14250: binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow and resultant heap-based buffer overflow. Package Name: libgcc Installed Version: 8.5.0-28.el8_10 Fixed Version: References: lists.opensuse.org lists.opensuse.org lists.opensuse.org lists.opensuse.org lists.opensuse.org www.securityfocus.com access.redhat.com gcc.gnu.org gcc.gnu.org nvd.nist.gov security.gentoo.org security.netapp.com ubuntu.com ubuntu.com ubuntu.com usn.ubuntu.com usn.ubuntu.com www.cve.org
LOW	CVE-2022-27943: binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by nm-new. Package Name: libgcc Installed Version: 8.5.0-28.el8_10 Fixed Version: References: access.redhat.com gcc.gnu.org gcc.gnu.org gcc.gnu.org gcc.gnu.org gcc.gnu.org lists.fedoraproject.org nvd.nist.gov sourceware.org www.cve.org
LOW	CVE-2018-19211: ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c In ncurses 6.1, there is a NULL pointer dereference at function _nc_parse_entry in parse_entry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character `' in name or alias field" detection. Package Name:* ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com bugzilla.redhat.com nvd.nist.gov ubuntu.com www.cve.org
LOW	CVE-2020-19185: ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373 Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19186: ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66 Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19187: ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100 Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19188: ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116 Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19189: ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com lists.debian.org nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com ubuntu.com www.cve.org
LOW	CVE-2020-19190: ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70 Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2021-39537: ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: cvsweb.netbsd.org seclists.org seclists.org seclists.org seclists.org access.redhat.com lists.debian.org lists.gnu.org lists.gnu.org nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com ubuntu.com ubuntu.com www.cve.org
LOW	CVE-2023-50495: ncurses: segmentation fault via _nc_wrap_entry() NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com lists.fedoraproject.org lists.fedoraproject.org lists.gnu.org lists.gnu.org nvd.nist.gov security.netapp.com ubuntu.com www.cve.org
LOW	CVE-2018-19211: ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c In ncurses 6.1, there is a NULL pointer dereference at function _nc_parse_entry in parse_entry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character `' in name or alias field" detection. Package Name:* ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com bugzilla.redhat.com nvd.nist.gov ubuntu.com www.cve.org
LOW	CVE-2020-19185: ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373 Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19186: ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66 Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19187: ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100 Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19188: ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116 Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19189: ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com lists.debian.org nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com ubuntu.com www.cve.org
LOW	CVE-2020-19190: ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70 Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2021-39537: ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: cvsweb.netbsd.org seclists.org seclists.org seclists.org seclists.org access.redhat.com lists.debian.org lists.gnu.org lists.gnu.org nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com ubuntu.com ubuntu.com www.cve.org
LOW	CVE-2023-50495: ncurses: segmentation fault via _nc_wrap_entry() NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com lists.fedoraproject.org lists.fedoraproject.org lists.gnu.org lists.gnu.org nvd.nist.gov security.netapp.com ubuntu.com www.cve.org
LOW	CVE-2022-41409: pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input. Package Name: pcre2 Installed Version: 10.32-3.el8_6 Fixed Version: References: access.redhat.com github.com github.com github.com nvd.nist.gov www.cve.org
Target:	kurrentdb-operator
HIGH	CVE-2025-61729: crypto/x509: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption. Package Name: stdlib Installed Version: v1.25.4 Fixed Version: 1.24.11, 1.25.5 References: access.redhat.com go.dev go.dev groups.google.com nvd.nist.gov pkg.go.dev www.cve.org
MEDIUM	CVE-2025-47914: golang.org/x/crypto/ssh/agent: in golang.org/x/crypto/ssh/agent SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read. Package Name: golang.org/x/crypto Installed Version: v0.42.0 Fixed Version: 0.45.0 References: access.redhat.com go.dev go.dev go.googlesource.com groups.google.com nvd.nist.gov pkg.go.dev www.cve.org
MEDIUM	CVE-2025-58181: golang.org/x/crypto/ssh: in golang.org/x/crypto/ssh SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. Package Name: golang.org/x/crypto Installed Version: v0.42.0 Fixed Version: 0.45.0 References: access.redhat.com go.dev go.dev groups.google.com nvd.nist.gov pkg.go.dev www.cve.org
MEDIUM	CVE-2025-61727: golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not prevent a leaf certificate from claiming the SAN .example.com. Package Name:* stdlib Installed Version: v1.25.4 Fixed Version: 1.24.11, 1.25.5 References: access.redhat.com go.dev go.dev groups.google.com nvd.nist.gov pkg.go.dev www.cve.org

Package statistics are no longer available on cloudsmith.io. Please visit our new web app to access this feature.

These instructions assume you have setup the repository first (or read it).

To pull kurrentdb-operator @ reference/tag sha256:3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f831521659b1a5874f1a89579e5f:

docker pull docker.eventstore.com/kurrent-latest/kurrentdb-operator@sha256:3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f831521659b1a5874f1a89579e5f

You can also pull the latest version of this image (if it exists):

docker pull docker.eventstore.com/kurrent-latest/kurrentdb-operator:latest

To refer to this image after pulling in a Dockerfile, specify the following:

FROM docker.eventstore.com/kurrent-latest/kurrentdb-operator@sha256:3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f831521659b1a5874f1a89579e5f

Still stuck? Need help? Don't panic. Just contact us for help (even if you're not a customer).

Previous Version: 29ee03923ac4fd8df9d…

Next Version: 5f8be3f12b7a48e244b…

kurrentdb-operator 3ae2d1e1d7e621d9c4ca9c44ac9…

One-liner (summary)

Description

License

Size

Downloads

Tags

Last scanned

Scan result

Vulnerability count

Max. severity

CVE-2025-5278: coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

CVE-2018-19217: ncurses: Null pointer dereference at function _nc_name_match

CVE-2018-19217: ncurses: Null pointer dereference at function _nc_name_match

CVE-2018-20657: libiberty: Memory leak in demangle_template function resulting in a denial of service

CVE-2019-14250: binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow

CVE-2022-27943: binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

CVE-2018-19211: ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

CVE-2020-19185: ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

CVE-2020-19186: ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

CVE-2020-19187: ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

CVE-2020-19188: ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

CVE-2020-19189: ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

CVE-2020-19190: ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

CVE-2021-39537: ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

CVE-2023-50495: ncurses: segmentation fault via _nc_wrap_entry()

CVE-2018-19211: ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

CVE-2020-19185: ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

CVE-2020-19186: ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

CVE-2020-19187: ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

CVE-2020-19188: ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

CVE-2020-19189: ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

CVE-2020-19190: ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

CVE-2021-39537: ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

CVE-2023-50495: ncurses: segmentation fault via _nc_wrap_entry()

CVE-2022-41409: pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop

CVE-2025-61729: crypto/x509: Excessive resource consumption when printing error string for host certificate validation in crypto/x509

CVE-2025-47914: golang.org/x/crypto/ssh/agent: in golang.org/x/crypto/ssh/agent

CVE-2025-58181: golang.org/x/crypto/ssh: in golang.org/x/crypto/ssh

CVE-2025-61727: golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs