Cloudsmith - Repositories - Kurrent (eventstore) - kurrent-latest (kurrent-latest) - kurrentdb-operator

Package Search Help

You can use boolean logic (e.g. AND/OR/NOT) for complex search queries. For more help and examples, see the search documentation.

Search by package name:
my-package _(implicit)
name:my-package _(explicit)

Search by package filename:
filename:my-package.ext

Search by package tag:
tag:latest

Search by package version:
version:1.0.0 prerelease:true _{(prereleases)}
prerelease:false _{(no prereleases)}

Search by package architecture:
architecture:x86_64

Search by package distribution:
distribution:el

Search by package license:
license:MIT

Search by package format:
format:deb

Search by package status:
status:in_progress

Search by package file checksum:
checksum:5afba

Search by package security status:
severity:critical

Search by package vulnerabilities:
vulnerabilities:>1
vulnerabilities:<1000

Search by # of package downloads:
downloads:>8
downloads:<100

Search by package type:
type:binary
type:source

Search by package size (bytes):
size:>50000
size:<10000

Search by dependency name/version:
dependency:log4j
dependency:log4j=1.0.0
dependency:log4j>1.0.0

Search by uploaded date:
uploaded:>"1 day ago"
uploaded:<"August 14, 2022 EST"

Search by entitlement token (identifier):
entitlement:3lKPVJPosCsY

Search by policy violation:
policy_violated:true
deny_policy_violated:true
license_policy_violated:true
vulnerability_policy_violated:true

Search by repository:
repository:repo-name

Search by last download date:
last_downloaded:<"30 days ago"
last_downloaded:>"August 14, 2022 EST"

Search queries for all Debian-specific (and related) package types

Search by component:
deb_component:unstable

Search queries for all Maven-specific (and related) package types

Search by group ID:
maven_group_id:org.apache

Search queries for all Docker-specific (and related) package types

Search by image digest:
docker_image_digest:sha256:7c5..6d4
(full hashref only)

Search by layer digest:
docker_layer_digest:sha256:4c4..ae4
(full hashref only)

Search queries for all Generic-specific package types

Search by file path:
generic_filepath:path/to/file.txt

Search by directory:
generic_directory:path/to

Field type modifiers (depending on the type, you can influence behaviour)

For all queries, you can use:
~foo for negation

For string queries, you can use:
^foo to anchor to start of term
foo$ to anchor to end of term
foo*bar for fuzzy matching

For number/date or version queries, you can use:
>foo for values greater than
>=foo for values greater / equal
<foo for values less than
<=foo for values less / equal

Need a secure and centralised artifact repository to deliver Alpine, Cargo, CocoaPods, Composer, Conan, Conda, CRAN, Dart, Debian, Docker, Generic, Go, Helm, Hex, HuggingFace, LuaRocks, Maven, MCP, npm, NuGet, P2, Python, RedHat, Ruby, Swift, Terraform, Vagrant, VSX, Raw & More packages?

Cloudsmith is the new standard in Package / Artifact Management and Software Distribution.

With support for all major package formats, you can trust us to manage your software supply chain.

Start My Free Trial

Set Me Up

Public — eventstore (Kurrent) / kurrent-latest

A certifiably-awesome public package repository curated by Kurrent, hosted by Cloudsmith.

kurrentdb-operator c72d943c1a4089fc986c9f7e7d5…

Download

One-liner (summary)

A certifiably-awesome package curated by ryan-b, hosted by Cloudsmith.

Description

A certifiably-awesome package curated by ryan-b, hosted by Cloudsmith.

License

Unknown

Size

19.5 MB

Downloads

120

Tags

image arm64 linux

Status	Completed
Checksum (MD5)	13adfdfda12010f16bfe2d8593404c6b
Checksum (SHA-1)	c0fcc82a8b2e693bd4754d0cd4cf87e737958f37
Checksum (SHA-256)	c72d943c1a4089fc986c9f7e7d5f6b27947490ba51e1253d09972dfea1b60837
Checksum (SHA-512)	ebeca0392fcf1cefe2cbc3de3cbaadf92e23afd8497643097cc97b11a85472d5ff…
GPG Signature	Download
GPG Fingerprint	02a89004460aa252035d6b7d094442d90ad50bcd
Storage Region	Dublin, Ireland
Type	Binary (contains binaries and binary artifacts)
Uploaded At	5 months, 3 weeks ago
Uploaded By
Slug Id	kurrentdb-operator-lwx7
Unique Id	WXZfmCrOMLvV
Version (Raw)	c72d943c1a4089fc986c9f7e7d5f6b27947490ba51e1253d09972dfea1b60837
Version (Parsed)	Type: Unknown
	docker-specific metadata
Image Digest	sha256:c72d943c1a4089fc986c9f7e7d5f6b27947490ba51e1253d09972dfea1b60837
Config Digest	sha256:de9c15e0bf943a27a58934ea67bf9735c721365204b916f0ca8516ed979faedd
V1 OCI Index Digest	sha256:bdc57c59e78de5c0e69df2981b95d3eb7d83d4a4adf04ac4aed49f8459fad236
V1 Distribution (Signed) Digest	sha256:f0e49b351400faceb5007e6f1ac21969301d6f08fe0860a2abfe2712cc3b900d
V1 OCI Digest	sha256:5036176374876fce7ca3045bde15cb10c59999b58ddd56f15d91668da6e19117
V2 Distribution List Digest	sha256:af372c46a51adc008184408ae2df146efafe2cc6b67ce8da7dda74c5fcc6c0de
V1 Distribution Digest	sha256:d97400e63e07b728e2f2ded0c5f6c3c0bbaec348d8c402be372b962d69e9f257
V2 Distribution Digest	sha256:c72d943c1a4089fc986c9f7e7d5f6b27947490ba51e1253d09972dfea1b60837
	extended metadata
Manifest Type	V2 Distribution
Architecture	arm64
Config	Entrypoint /kurrentdb-operator Env PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin Labels 'version' '1.5.0' Labels 'vcs-type' 'git' Labels 'vendor' 'Kurrent, Inc' Labels 'architecture' 'aarch64' Labels 'build-date' '2025-12-18T09:14:15Z' Labels 'com.redhat.component' 'ubi8-micro-container' Labels 'com.redhat.license_terms' 'https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI' Labels 'cpe' 'cpe:/a:redhat:enterprise_linux:8::appstream' Labels 'description' 'Deploys and manages KurrentDB within Kubernetes.' Labels 'distribution-scope' 'public' Labels 'io.buildah.version' '1.41.4' Labels 'io.k8s.description' 'Very small image which doesn't install the package manager.' Labels 'io.k8s.display-name' 'Red Hat Universal Base Image 8 Micro' Labels 'maintainer' 'Kurrent, Inc' Labels 'name' 'kurrentdb-operator' Labels 'org.opencontainers.image.created' '2025-12-18T09:14:15Z' Labels 'org.opencontainers.image.revision' '9127d650c356830945617e418b5d99ecc4c33c7c' Labels 'release' '4a061eca' Labels 'summary' 'The KurrentDB Operator.' Labels 'url' 'https://catalog.redhat.com/en/search?searchType=containers' Labels 'vcs-ref' '9127d650c356830945617e418b5d99ecc4c33c7c' User 65532:65532 Working Dir /
Created	2025-12-23 18:15:05 UTC
Os	linux

This package was uploaded with the following V2 Distribution manifest:

{
  "schemaVersion": 2,
  "mediaType": "application/vnd.docker.distribution.manifest.v2+json",
  "config": {
    "mediaType": "application/vnd.docker.container.image.v1+json",
    "digest": "sha256:8c2f37e1129ae642c9b90f300a039bcb6c2cbed0c2f38184de2322882fe5cb0f",
    "size": 6515
  },
  "layers": [
    {
      "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
      "digest": "sha256:74b3c2a3aabd4d27d1376312f0569d29a225b29637edebd8e7b00b8743b67496",
      "size": 10329237
    },
    {
      "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
      "digest": "sha256:8252c56ef7920834a46cdcdb644cdf5cb46b2521929b997e4baf71119048491c",
      "size": 1793
    },
    {
      "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
      "digest": "sha256:ff24c01f2d59eaa912af2d42641d8844d386d5ab4e4253c5840f0519b8396807",
      "size": 10122366
    }
  ]
}

	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL maintainer="Red Hat, Inc."	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL vendor="Red Hat, Inc."	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL url="https://catalog.redhat.com/en/search?searchType=containers"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL com.redhat.component="ubi8-micro-container"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL name="ubi8/ubi-micro"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL version="8.10"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL cpe="cpe:/a:redhat:enterprise_linux:8::appstream"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL distribution-scope="public"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL com.redhat.license_terms="https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL summary="ubi8 micro image"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL description="Very small image which doesn't install the package manager."	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL io.k8s.description="Very small image which doesn't install the package manager."	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL io.k8s.display-name="Red Hat Universal Base Image 8 Micro"	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) LABEL io.openshift.expose-services=""	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY dir:a91e4acfb8606ebff1444c75e423363cff39b85eb379c917afe22da03aa10974 in /	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:67f65df33ff6c09984969b192c50b78072a88c5655e380e734315d0229c75aa1 in /etc/yum.repos.d/	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) CMD /bin/sh	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:518c885a82749a6265363266bee66395b7dce67072656837d42700d947fc7945 in /usr/share/buildinfo/content-sets.json	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:518c885a82749a6265363266bee66395b7dce67072656837d42700d947fc7945 in /root/buildinfo/content_manifests/content-sets.json	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:042e1d42d6ba5c57d3db28519a977b532ed259dd357cd95413ec263ea635325a in /usr/share/buildinfo/labels.json	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) COPY file:042e1d42d6ba5c57d3db28519a977b532ed259dd357cd95413ec263ea635325a in /root/buildinfo/labels.json	32 bytes
	Digest: sha256:74b3c2a3aabd4d27d1376312f0569d29a225b29637edebd8e7b00b8743b67496 Command: /bin/sh -c #(nop) LABEL "architecture"="aarch64" "vcs-type"="git" "vcs-ref"="9127d650c356830945617e418b5d99ecc4c33c7c" "org.opencontainers.image.revision"="9127d650c356830945617e418b5d99ecc4c33c7c" "build-date"="2025-12-18T09:14:15Z" "org.opencontainers.image.created"="2025-12-18T09:14:15Z" "release"="1766049072"org.opencontainers.image.revision=9127d650c356830945617e418b5d99ecc4c33c7c,org.opencontainers.image.created=2025-12-18T09:14:15Z	9.9 MB
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ARG TARGETOS=linux	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ARG TARGETARCH=arm64	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: WORKDIR /	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: USER 65532:65532	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENTRYPOINT ["/kurrentdb-operator"]	32 bytes
	Digest: sha256:8252c56ef7920834a46cdcdb644cdf5cb46b2521929b997e4baf71119048491c Command: COPY licenses /licenses # buildkit	1.8 KB
	Digest: sha256:ff24c01f2d59eaa912af2d42641d8844d386d5ab4e4253c5840f0519b8396807 Command: COPY linux/arm64 /kurrentdb-operator # buildkit	9.7 MB

kurrentdb-operator e7791f3cca1ba0dd4f91141492c8c8d8995166a…	image arm64 linux 14.5 MB — 1 week, 4 days ago	1
kurrentdb-operator e3875986fbd68231c3ff4d1caaa4b80751a00bb…	image arm64 linux 10.4 MB — 5 months, 3 weeks ago	263
kurrentdb-operator cf5a93ed29447065b973afe1828a7c036b92915…	image amd64 linux 11.7 MB — 7 months, 2 weeks ago	156
kurrentdb-operator d6feb0cc639a21611f6ab97c76f6ac0f19571a4…	image amd64 linux 14.8 MB — 8 months, 1 week ago	114
kurrentdb-operator dd2e09f3d95f8c00e1b17e6d79dffd1ed0f3932…	image arm64 linux 13.4 MB — 8 months, 3 weeks ago	15
kurrentdb-operator ebb80ec88390bc0f2c50ac9f93a7e6821154584…	image amd64 linux 14.7 MB — 8 months, 3 weeks ago	77
kurrentdb-operator c8451fd817bfa1edafde57df5f20f51269a9d0f…	image amd64 linux 30.0 MB — 1 year, 1 month ago	98
kurrentdb-operator d0542e69938787ca732ab3a98e282c71a109f60…	image amd64 linux 30.0 MB — 1 year, 2 months ago	189
kurrentdb-operator ec53bff87d61db8a11cbec706bc338443813c16…	image arm64 linux 28.2 MB — 1 year, 2 months ago	79
kurrentdb-operator c72d943c1a4089fc986c9f7e7d5f6b27947490b…	image arm64 linux 19.5 MB — 5 months, 3 weeks ago	120
kurrentdb-operator c11cd2575c17f79e007d34375f985eb610aafed…	image amd64 linux 26.3 MB — 1 week, 1 day ago	1
kurrentdb-operator 77e0337622d8097af8a6a8df01ccd5f8b900c1e…	image arm64 linux 23.6 MB — 1 week, 1 day ago	1
kurrentdb-operator 723964f07e997ca353241e555336fbd1d06318e…	image amd64 linux 16.3 MB — 1 week, 4 days ago	1
kurrentdb-operator 3ae2d1e1d7e621d9c4ca9c44ac9e8e7f5907f83…	image amd64 linux 21.7 MB — 5 months, 3 weeks ago	114
kurrentdb-operator 29ee03923ac4fd8df9d04159c30a4babf004d13…	image amd64 linux 11.7 MB — 5 months, 3 weeks ago	403
kurrentdb-operator 803d09ed95c7cd3a02ce886a98cd1a141276198…	image arm64 linux 19.5 MB — 7 months ago	58
kurrentdb-operator 5d766239ca36070230e3ece884d3a9a914d8a12…	image amd64 linux 21.8 MB — 7 months ago	57
kurrentdb-operator 1fef404277f581b9c3cdaf8ab55ee8c1eb16d11…	image arm64 linux 10.4 MB — 7 months, 2 weeks ago	23
kurrentdb-operator 396c0083981a777393a9f40cbe24c00238623a3…	image arm64 linux 19.5 MB — 7 months, 2 weeks ago	13
kurrentdb-operator 40fcec2a5ab7230879faa9db3ca225151b24392…	image amd64 linux 21.8 MB — 7 months, 2 weeks ago	13

Only packages within the same repository are displayed. The current package you're viewing is highlighted.

Last scanned

5 months, 3 weeks ago

Scan result

Vulnerable

Vulnerability count

Max. severity

High

Target:	WXZfmCrOMLvV.sbom-cyclonedx.json (redhat 8.10)
MEDIUM	CVE-2025-5278: coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitive data. Package Name: coreutils-single Installed Version: 8.30-15.el8 Fixed Version: References: www.openwall.com www.openwall.com www.openwall.com access.redhat.com bugzilla.redhat.com cgit.git.savannah.gnu.org cgit.git.savannah.gnu.org nvd.nist.gov security-tracker.debian.org www.cve.org
MEDIUM	CVE-2018-19217: ncurses: Null pointer dereference at function _nc_name_match In ncurses, possibly a 6.x version, there is a NULL pointer dereference at the function _nc_name_match that will lead to a denial of service attack. NOTE: the original report stated version 6.1, but the issue did not reproduce for that version according to the maintainer or a reliable third-party Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com bugzilla.redhat.com lists.gnu.org nvd.nist.gov www.cve.org
MEDIUM	CVE-2018-19217: ncurses: Null pointer dereference at function _nc_name_match In ncurses, possibly a 6.x version, there is a NULL pointer dereference at the function _nc_name_match that will lead to a denial of service attack. NOTE: the original report stated version 6.1, but the issue did not reproduce for that version according to the maintainer or a reliable third-party Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com bugzilla.redhat.com lists.gnu.org nvd.nist.gov www.cve.org
LOW	CVE-2018-20657: libiberty: Memory leak in demangle_template function resulting in a denial of service The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a crafted string, leading to a denial of service (memory consumption), as demonstrated by cxxfilt, a related issue to CVE-2018-12698. Package Name: libgcc Installed Version: 8.5.0-28.el8_10 Fixed Version: References: www.securityfocus.com access.redhat.com access.redhat.com gcc.gnu.org linux.oracle.com linux.oracle.com nvd.nist.gov support.f5.com www.cve.org
LOW	CVE-2019-14250: binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow and resultant heap-based buffer overflow. Package Name: libgcc Installed Version: 8.5.0-28.el8_10 Fixed Version: References: lists.opensuse.org lists.opensuse.org lists.opensuse.org lists.opensuse.org lists.opensuse.org www.securityfocus.com access.redhat.com gcc.gnu.org gcc.gnu.org nvd.nist.gov security.gentoo.org security.netapp.com ubuntu.com ubuntu.com ubuntu.com usn.ubuntu.com usn.ubuntu.com www.cve.org
LOW	CVE-2022-27943: binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by nm-new. Package Name: libgcc Installed Version: 8.5.0-28.el8_10 Fixed Version: References: access.redhat.com gcc.gnu.org gcc.gnu.org gcc.gnu.org gcc.gnu.org gcc.gnu.org lists.fedoraproject.org nvd.nist.gov sourceware.org www.cve.org
LOW	CVE-2018-19211: ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c In ncurses 6.1, there is a NULL pointer dereference at function _nc_parse_entry in parse_entry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character `' in name or alias field" detection. Package Name:* ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com bugzilla.redhat.com nvd.nist.gov ubuntu.com www.cve.org
LOW	CVE-2020-19185: ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373 Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19186: ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66 Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19187: ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100 Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19188: ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116 Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19189: ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com lists.debian.org nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com ubuntu.com www.cve.org
LOW	CVE-2020-19190: ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70 Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2021-39537: ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow. Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: cvsweb.netbsd.org seclists.org seclists.org seclists.org seclists.org access.redhat.com lists.debian.org lists.gnu.org lists.gnu.org nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com ubuntu.com ubuntu.com www.cve.org
LOW	CVE-2023-50495: ncurses: segmentation fault via _nc_wrap_entry() NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). Package Name: ncurses-base Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com lists.fedoraproject.org lists.fedoraproject.org lists.gnu.org lists.gnu.org nvd.nist.gov security.netapp.com ubuntu.com www.cve.org
LOW	CVE-2018-19211: ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c In ncurses 6.1, there is a NULL pointer dereference at function _nc_parse_entry in parse_entry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character `' in name or alias field" detection. Package Name:* ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com bugzilla.redhat.com nvd.nist.gov ubuntu.com www.cve.org
LOW	CVE-2020-19185: ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373 Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19186: ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66 Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19187: ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100 Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19188: ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116 Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2020-19189: ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com lists.debian.org nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com ubuntu.com www.cve.org
LOW	CVE-2020-19190: ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70 Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: seclists.org seclists.org seclists.org access.redhat.com github.com nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com www.cve.org
LOW	CVE-2021-39537: ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow. Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: cvsweb.netbsd.org seclists.org seclists.org seclists.org seclists.org access.redhat.com lists.debian.org lists.gnu.org lists.gnu.org nvd.nist.gov security.netapp.com support.apple.com support.apple.com support.apple.com ubuntu.com ubuntu.com www.cve.org
LOW	CVE-2023-50495: ncurses: segmentation fault via _nc_wrap_entry() NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). Package Name: ncurses-libs Installed Version: 6.1-10.20180224.el8 Fixed Version: References: access.redhat.com lists.fedoraproject.org lists.fedoraproject.org lists.gnu.org lists.gnu.org nvd.nist.gov security.netapp.com ubuntu.com www.cve.org
LOW	CVE-2022-41409: pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input. Package Name: pcre2 Installed Version: 10.32-3.el8_6 Fixed Version: References: access.redhat.com github.com github.com github.com nvd.nist.gov www.cve.org
Target:	kurrentdb-operator
HIGH	CVE-2025-61729: crypto/x509: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption. Package Name: stdlib Installed Version: v1.25.4 Fixed Version: 1.24.11, 1.25.5 References: access.redhat.com go.dev go.dev groups.google.com nvd.nist.gov pkg.go.dev www.cve.org
MEDIUM	CVE-2025-47914: golang.org/x/crypto/ssh/agent: in golang.org/x/crypto/ssh/agent SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read. Package Name: golang.org/x/crypto Installed Version: v0.42.0 Fixed Version: 0.45.0 References: access.redhat.com go.dev go.dev go.googlesource.com groups.google.com nvd.nist.gov pkg.go.dev www.cve.org
MEDIUM	CVE-2025-58181: golang.org/x/crypto/ssh: in golang.org/x/crypto/ssh SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. Package Name: golang.org/x/crypto Installed Version: v0.42.0 Fixed Version: 0.45.0 References: access.redhat.com go.dev go.dev groups.google.com nvd.nist.gov pkg.go.dev www.cve.org
MEDIUM	CVE-2025-61727: golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not prevent a leaf certificate from claiming the SAN .example.com. Package Name:* stdlib Installed Version: v1.25.4 Fixed Version: 1.24.11, 1.25.5 References: access.redhat.com go.dev go.dev groups.google.com nvd.nist.gov pkg.go.dev www.cve.org

Package statistics are no longer available on cloudsmith.io. Please visit our new web app to access this feature.

These instructions assume you have setup the repository first (or read it).

To pull kurrentdb-operator @ reference/tag sha256:c72d943c1a4089fc986c9f7e7d5f6b27947490ba51e1253d09972dfea1b60837:

docker pull docker.eventstore.com/kurrent-latest/kurrentdb-operator@sha256:c72d943c1a4089fc986c9f7e7d5f6b27947490ba51e1253d09972dfea1b60837

You can also pull the latest version of this image (if it exists):

docker pull docker.eventstore.com/kurrent-latest/kurrentdb-operator:latest

To refer to this image after pulling in a Dockerfile, specify the following:

FROM docker.eventstore.com/kurrent-latest/kurrentdb-operator@sha256:c72d943c1a4089fc986c9f7e7d5f6b27947490ba51e1253d09972dfea1b60837

Still stuck? Need help? Don't panic. Just contact us for help (even if you're not a customer).

Previous Version: c11cd2575c17f79e007…

Next Version: ec53bff87d61db8a11c…

kurrentdb-operator c72d943c1a4089fc986c9f7e7d5…

One-liner (summary)

Description

License

Size

Downloads

Tags

Last scanned

Scan result

Vulnerability count

Max. severity

CVE-2025-5278: coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

CVE-2018-19217: ncurses: Null pointer dereference at function _nc_name_match

CVE-2018-19217: ncurses: Null pointer dereference at function _nc_name_match

CVE-2018-20657: libiberty: Memory leak in demangle_template function resulting in a denial of service

CVE-2019-14250: binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow

CVE-2022-27943: binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

CVE-2018-19211: ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

CVE-2020-19185: ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

CVE-2020-19186: ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

CVE-2020-19187: ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

CVE-2020-19188: ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

CVE-2020-19189: ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

CVE-2020-19190: ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

CVE-2021-39537: ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

CVE-2023-50495: ncurses: segmentation fault via _nc_wrap_entry()

CVE-2018-19211: ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

CVE-2020-19185: ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

CVE-2020-19186: ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

CVE-2020-19187: ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

CVE-2020-19188: ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

CVE-2020-19189: ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

CVE-2020-19190: ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

CVE-2021-39537: ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

CVE-2023-50495: ncurses: segmentation fault via _nc_wrap_entry()

CVE-2022-41409: pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop

CVE-2025-61729: crypto/x509: Excessive resource consumption when printing error string for host certificate validation in crypto/x509

CVE-2025-47914: golang.org/x/crypto/ssh/agent: in golang.org/x/crypto/ssh/agent

CVE-2025-58181: golang.org/x/crypto/ssh: in golang.org/x/crypto/ssh

CVE-2025-61727: golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs