DirectorySecurity AdvisoriesPricing
Sign in
Directory
gitlab-toolbox-ce logo

gitlab-toolbox-ce

packaged by Chainguard

Last changed
Request a free trial

Contact our team to test out this image for free. Please also indicate any other images you would like to evaluate.

Tags
Overview
Comparison
Provenance
Specifications
SBOM
Vulnerabilities
Advisories

Expand
CVE ID
Severity
Package
Version
Last detected
CVE-2026-33815
Critical
gitaly-backup-18.11
18.11.5-r1
CVE-2025-32460
Critical
graphicsmagick
1.3.47-r3
CVE-2026-39821
Critical
gitaly-backup-18.11
18.11.5-r1
CVE-2026-33540
High
gitlab-rails-ce-doc-18.11
18.11.5-r2
CVE-2026-42306
High
github.com/docker/docker
v28.0.0+incompatible
CVE-2026-41316
High
erb
4.0.3
CVE-2026-41567
High
github.com/docker/docker
v28.0.0+incompatible
CVE-2026-35611
High
addressable
2.8.7
CVE-2026-7210
High
python-3.12
3.12.13-r8
CVE-2026-33540
High
github.com/distribution/distribution/v3
v3.0.0-20221208165359-362910506bc2
CVE-2026-35172
High
gitlab-rails-ce-assets-18.11
18.11.5-r2
CVE-2026-11940
High
python-3.12
3.12.13-r8
CVE-2026-35172
High
github.com/distribution/distribution/v3
v3.0.0-20221208165359-362910506bc2
CVE-2026-4786
High
python-3.12
3.12.13-r8
CVE-2026-39883
High
gitlab-rails-ce-18.11
18.11.5-r2
CVE-2026-54904
High
concurrent-ruby
1.3.6
CVE-2026-35172
High
gitlab-rails-ce-doc-18.11
18.11.5-r2
CVE-2026-39883
High
gitlab-rails-ce-doc-18.11
18.11.5-r2
CVE-2026-11972
High
python-3.12
3.12.13-r8
CVE-2026-3644
High
python-3.12
3.12.13-r8
CVE-2026-44973
High
gitaly-backup-18.11
18.11.5-r1
CVE-2026-33540
High
gitlab-rails-ce-assets-18.11
18.11.5-r2
CVE-2026-4224
High
python-3.12
3.12.13-r8
CVE-2026-33540
High
gitlab-rails-ce-18.11
18.11.5-r2
CVE-2026-39883
High
gitlab-rails-ce-assets-18.11
18.11.5-r2
CVE-2026-34040
High
github.com/docker/docker
v28.0.0+incompatible
CVE-2026-9669
High
python-3.12
3.12.13-r8
CVE-2026-35172
High
gitlab-rails-ce-18.11
18.11.5-r2
CVE-2025-15367
Medium
python-3.12
3.12.13-r8
CVE-2026-44587
Medium
carrierwave
1.3.4
CVE-2026-12003
Medium
python-3.12
3.12.13-r8
CVE-2026-6019
Medium
python-3.12
3.12.13-r8
CVE-2026-56405
Medium
libexpat1
2.8.1-r1
CVE-2026-56410
Medium
libexpat1
2.8.1-r1
GHSA-5prr-v3j2-97mh
Medium
nokogiri
1.19.3
CVE-2026-44740
Medium
gitaly-backup-18.11
18.11.5-r1
CVE-2023-49090
Medium
carrierwave
1.3.4
CVE-2025-15366
Medium
python-3.12
3.12.13-r8
CVE-2025-67202
Medium
sidekiq-cron
2.3.1
CVE-2026-32700
Medium
devise
4.9.4
CVE-2026-3446
Medium
python-3.12
3.12.13-r8
CVE-2026-2297
Medium
python-3.12
3.12.13-r8
CVE-2026-44312
Medium
css_parser
1.14.0
CVE-2026-41178
Medium
gitlab-rails-ce-assets-18.11
18.11.5-r2
CVE-2026-50219
Medium
libexpat1
2.8.1-r1
CVE-2026-41888
Medium
github.com/distribution/distribution/v3
v3.0.0-20221208165359-362910506bc2
CVE-2026-41888
Medium
gitlab-rails-ce-assets-18.11
18.11.5-r2
CVE-2026-56404
Medium
libexpat1
2.8.1-r1
CVE-2026-56409
Medium
libexpat1
2.8.1-r1
CVE-2024-8796
Medium
devise-two-factor
5.1.0
CVE-2026-41888
Medium
gitlab-rails-ce-18.11
18.11.5-r2
CVE-2026-41178
Medium
gitlab-rails-ce-18.11
18.11.5-r2
CVE-2026-56403
Medium
libexpat1
2.8.1-r1
CVE-2026-56407
Medium
libexpat1
2.8.1-r1
CVE-2026-33635
Medium
icalendar
2.10.3
CVE-2026-56408
Medium
libexpat1
2.8.1-r1
CVE-2026-56132
Medium
libexpat1
2.8.1-r1
CVE-2026-33532
Medium
yaml
1.0.0
CVE-2026-41178
Medium
gitaly-backup-18.11
18.11.5-r1
CVE-2026-56411
Medium
libexpat1
2.8.1-r1
CVE-2026-0864
Medium
python-3.12
3.12.13-r8
CVE-2026-56412
Medium
libexpat1
2.8.1-r1
CVE-2025-12781
Medium
python-3.12
3.12.13-r8
CVE-2026-56406
Medium
libexpat1
2.8.1-r1
CVE-2026-56131
Medium
libexpat1
2.8.1-r1
GHSA-3h96-34p3-xm76
Medium
graphql
2.5.11
CVE-2026-41888
Medium
gitlab-rails-ce-doc-18.11
18.11.5-r2
CVE-2026-41568
Medium
github.com/docker/docker
v28.0.0+incompatible
CVE-2026-33997
Medium
github.com/docker/docker
v28.0.0+incompatible
CVE-2024-29034
Medium
carrierwave
1.3.4
CVE-2026-41178
Medium
gitlab-rails-ce-doc-18.11
18.11.5-r2
CVE-2026-54906
Low
concurrent-ruby
1.3.6
GHSA-wjv4-x9w8-wm3h
Low
nokogiri
1.19.3
GHSA-phwj-rprq-35pp
Low
nokogiri
1.19.3
GHSA-p67v-3w7g-wjg7
Low
nokogiri
1.19.3
CVE-2026-54905
Low
concurrent-ruby
1.3.6
GHSA-8678-w3jw-xfc2
Low
nokogiri
1.19.3
GHSA-wfpw-mmfh-qq69
Low
nokogiri
1.19.3
CVE-2025-13462
Low
python-3.12
3.12.13-r8
GHSA-5v8h-3h3q-446p
Low
nokogiri
1.19.3
GHSA-wx77-rp39-c6vg
Low
markdown
1.0.0
GHSA-9cv2-cfxc-v4v2
Low
nokogiri
1.19.3
GHSA-638v-9w3r-gh6q
Unknown
libexpat1
2.8.1-r1
GHSA-5wrp-cwcj-q835
Unknown
gitlab-rails-ce-18.11
18.11.5-r2
GHSA-3p65-76g6-3w7r
Unknown
gitlab-rails-ce-18.11
18.11.5-r2
GHSA-hfvc-g4fc-pqhx
Unknown
gitlab-rails-ce-assets-18.11
18.11.5-r2
GHSA-m3xc-h892-ggx6
Unknown
gitaly-backup-18.11
18.11.5-r1
GHSA-v2j6-3q6q-gm3g
Unknown
libexpat1
2.8.1-r1
GHSA-6pjf-3r9x-m592
Unknown
gitlab-rails-ce-doc-18.11
18.11.5-r2
GHSA-v3cw-2f3g-f38x
Unknown
libexpat1
2.8.1-r1
GHSA-f2g3-hh2r-cwgc
Unknown
gitlab-rails-ce-18.11
18.11.5-r2
GHSA-hfvc-g4fc-pqhx
Unknown
gitlab-rails-ce-doc-18.11
18.11.5-r2
CVE-2026-50195
Unknown
github.com/containerd/containerd
v1.7.32
GHSA-xqw9-f65g-5qxw
Unknown
libexpat1
2.8.1-r1
GHSA-5wrp-cwcj-q835
Unknown
gitaly-backup-18.11
18.11.5-r1
GHSA-r8qx-5vfx-8w6r
Unknown
libexpat1
2.8.1-r1
CVE-2026-3479
Unknown
python-3.12
3.12.13-r8
GHSA-6pjf-3r9x-m592
Unknown
gitlab-rails-ce-assets-18.11
18.11.5-r2
GHSA-qw64-3x98-g7q2
Unknown
gitaly-backup-18.11
18.11.5-r1
GHSA-6pjf-3r9x-m592
Unknown
gitlab-rails-ce-18.11
18.11.5-r2
GHSA-h5j3-rr49-jmm6
Unknown
libexpat1
2.8.1-r1
GHSA-5wrp-cwcj-q835
Unknown
gitlab-rails-ce-doc-18.11
18.11.5-r2
GHSA-9jq5-63hm-6q5g
Unknown
libexpat1
2.8.1-r1
GHSA-jhv6-83wh-9vj5
Unknown
libexpat1
2.8.1-r1
GHSA-hfvc-g4fc-pqhx
Unknown
gitlab-rails-ce-18.11
18.11.5-r2
GHSA-f2g3-hh2r-cwgc
Unknown
gitlab-rails-ce-assets-18.11
18.11.5-r2
GHSA-xgrm-4fwx-7qm8
Unknown
gitaly-backup-18.11
18.11.5-r1
GHSA-m2mm-5w64-p8p7
Unknown
libexpat1
2.8.1-r1
GHSA-5wrp-cwcj-q835
Unknown
gitlab-rails-ce-assets-18.11
18.11.5-r2
CVE-2026-53489
Unknown
github.com/containerd/containerd
v1.7.32
CVE-2026-47262
Unknown
github.com/containerd/containerd
v1.7.32
GHSA-3p65-76g6-3w7r
Unknown
gitlab-rails-ce-assets-18.11
18.11.5-r2
CVE-2026-53488
Unknown
github.com/containerd/containerd
v1.7.32
GHSA-w2q5-6q6x-x959
Unknown
gitaly-backup-18.11
18.11.5-r1
GHSA-hqmj-33cm-gqpq
Unknown
libexpat1
2.8.1-r1
CVE-2026-53492
Unknown
github.com/containerd/containerd
v1.7.32
GHSA-425r-vwq2-26qv
Unknown
libexpat1
2.8.1-r1
GHSA-68vw-xv3c-52vp
Unknown
libexpat1
2.8.1-r1
GHSA-fchf-wvcc-qf9g
Unknown
libexpat1
2.8.1-r1
GHSA-f2g3-hh2r-cwgc
Unknown
gitlab-rails-ce-doc-18.11
18.11.5-r2
GHSA-3p65-76g6-3w7r
Unknown
gitlab-rails-ce-doc-18.11
18.11.5-r2
Last updated:

The trusted source for open source

Talk to an expert
PrivacyTerms

Product

Chainguard ContainersChainguard LibrariesChainguard VMsChainguard OS PackagesChainguard ActionsChainguard Agent SkillsIntegrationsPricing

Solutions

FedRAMPPCI DSSCMMC 2.0SOC 2Golden ImagesCVE RemediationPublic SectorStartups

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsSupply Chain Security 101Chainguard CoursesDocumentationTrust CenterChainguard Slack Community

Company

About UsBlogOpen Source LeadershipPartnersNewsroomCareersLegal
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.