Cassandra 5.0
locked
latest
Size Reduction
-161%
364.7 MB to 951.3 MB (-586.6 MB saved)
Component Reduction
22%
236 to 183 packages (53 removed)
Vulnerability Reduction
0%
0 to 25 vulnerabilities (-25 eliminated)
Image Comparison
| Property | upstream | locked |
|---|---|---|
| Image | docker.io/library/cassandra:4.1.8 | ghcr.io/armorred/cassandra:5.0-locked |
| Size | 364.7 MB | 951.3 MB |
| Layers | 10 | 100 |
| Components | 236 | 183 |
| Vulnerabilities | 0 | 25 |
| Runtime User | root | 999 |
Vulnerability Analysis
upstream
0 total
locked
25 total
Locked vulnerability details (25)
| CVE ID | Severity | Package | Version | Fixed In |
|---|---|---|---|---|
| GHSA-j288-q9x7-2f5v | medium | org.apache.commons:commons-lang3 | 3.11 | 3.18.0 |
| GHSA-5mg8-w23w-74h3 | low | com.google.guava:guava | 27.0-jre | 32.0.0-android |
| GHSA-7g45-4rm6-3mm3 | medium | com.google.guava:guava | 27.0-jre | 32.0.0-android |
| GHSA-h46c-h94j-95f3 | high | com.fasterxml.jackson.core:jackson-core | 2.13.2 | 2.15.0 |
| GHSA-jjjh-jjxp-wpff | high | com.fasterxml.jackson.core:jackson-databind | 2.13.2.2 | 2.12.7.1 |
| GHSA-rgv9-q543-rqg4 | high | com.fasterxml.jackson.core:jackson-databind | 2.13.2.2 | 2.12.7.1 |
| OSV-2023-1307 | medium | libbpf | 1.4.7 | unfixed |
| OSV-2023-877 | medium | libbpf | 1.4.7 | unfixed |
| OSV-2024-395 | medium | libpcap | 1.10.5 | unfixed |
| OSV-2024-817 | medium | libpcap | 1.10.5 | 3cbf9ed34a0e040d53bfdb01f81870a61ad41ec6 |
| OSV-2021-777 | high | libxml2 | 2.13.8 | unfixed |
| GHSA-vmq6-5m68-f53m | high | ch.qos.logback:logback-classic | 1.2.9 | 1.3.12 |
| GHSA-25qh-j22f-pwp8 | medium | ch.qos.logback:logback-core | 1.2.9 | 1.5.19 |
| GHSA-6v67-2wr5-gvf4 | low | ch.qos.logback:logback-core | 1.2.9 | 1.5.13 |
| GHSA-pr98-23f8-jwxv | medium | ch.qos.logback:logback-core | 1.2.9 | 1.5.13 |
| GHSA-qqpg-mvqg-649v | low | ch.qos.logback:logback-core | 1.2.9 | 1.5.25 |
| GHSA-vmq6-5m68-f53m | high | ch.qos.logback:logback-core | 1.2.9 | 1.3.12 |
| OSV-2023-197 | unknown | p11-kit | 0.25.5 | unfixed |
| GHSA-3mc7-4q67-w48m | high | org.yaml:snakeyaml | 1.26 | 1.31 |
| GHSA-98wm-3w3q-mw94 | medium | org.yaml:snakeyaml | 1.26 | 1.31 |
| GHSA-9w3m-gqgf-c4p9 | medium | org.yaml:snakeyaml | 1.26 | 1.32 |
| GHSA-c4r9-r8fh-9vj2 | medium | org.yaml:snakeyaml | 1.26 | 1.31 |
| GHSA-hhhw-99gj-p3c3 | medium | org.yaml:snakeyaml | 1.26 | 1.31 |
| GHSA-mjmj-j48q-9wg2 | high | org.yaml:snakeyaml | 1.26 | 2.0 |
| GHSA-w37g-rhq8-7m4j | medium | org.yaml:snakeyaml | 1.26 | 1.32 |
Software Bill of Materials
upstream components (236)
- HdrHistogram 2.1.12
- ST4 4.0.8
- adduser 3.118ubuntu5
- airline 0.8
- antlr-runtime 3.5.2
- apache-cassandra 4.1.8
- apt 2.4.13
- asm 9.1
- base-files 12ubuntu4.7
- base-passwd 3.5.52build1
- bash 5.1-6ubuntu1.1
- bsdutils 1:2.37.2-4ubuntu3.4
- ca-certificates 20240203~22.04.1
- caffeine 2.9.2
- cassandra-driver-core 3.11.0
- checker-qual 3.10.0
- chronicle-bytes 2.20.111
- chronicle-core 2.20.126
- chronicle-queue 5.20.123
- chronicle-threads 2.20.111
- chronicle-wire 2.20.117
- commons-cli 1.1
- commons-codec 1.9
- commons-lang3 3.11
- commons-math3 3.2
- concurrent-trees 2.4.0
- coreutils 8.32-4.1ubuntu1.2
- curl 7.81.0-1ubuntu1.20
- dash 0.5.11+git20210903+057cd650a4ed-3build1
- debconf 1.5.79ubuntu1
- debianutils 5.5-1ubuntu2
- diffutils 1:3.8-0ubuntu2
- dirmngr 2.2.27-3ubuntu2.3
- dpkg 1.21.1ubuntu2.3
- e2fsprogs 1.46.5-2ubuntu1.2
- ecj 4.6.1
- error_prone_annotations 2.5.1
- findutils 4.8.0-1ubuntu3
- fontconfig 2.13.1-4.2ubuntu5
- fontconfig-config 2.13.1-4.2ubuntu5
- fonts-dejavu-core 2.37-2build1
- fqltool UNKNOWN
- gcc-12-base 12.3.0-1ubuntu1~22.04
- github.com/moby/sys/user v0.1.0
- github.com/tianon/gosu UNKNOWN
- gnupg 2.2.27-3ubuntu2.3
- gnupg-l10n 2.2.27-3ubuntu2.3
- gnupg-utils 2.2.27-3ubuntu2.3
- golang.org/x/sys v0.13.0
- gpg 2.2.27-3ubuntu2.3
- gpg-agent 2.2.27-3ubuntu2.3
- gpg-wks-client 2.2.27-3ubuntu2.3
- gpg-wks-server 2.2.27-3ubuntu2.3
- gpgconf 2.2.27-3ubuntu2.3
- gpgsm 2.2.27-3ubuntu2.3
- gpgv 2.2.27-3ubuntu2.3
- grep 3.7-1build1
- guava 27.0-jre
- gzip 1.10-4ubuntu4.1
- high-scale-lib 1.0.6
- hostname 3.23ubuntu2
- hppc 0.8.1
- init-system-helpers 1.62
- ipaddress 5.3.3
- iproute2 5.15.0-1ubuntu2
- j2objc-annotations 1.3
- jackson-annotations 2.13.2
- jackson-core 2.13.2
- jackson-databind 2.13.2.2
- jackson-datatype-jsr310 2.13.2
- jamm 0.3.2
- jbcrypt 0.4
- jcl-over-slf4j 1.7.25
- jcommander 1.30
- jctools-core 2.1.1
- jctools-core 3.1.0
- jna 5.9.0
- jrt-fs 11.0.27
- json-simple 1.1
- jsr305 2.0.2
- jvm-attach-api 1.5
- libacl1 2.3.1-1
- libapt-pkg6.0 2.4.13
- libassuan0 2.5.5-1build1
- libattr1 1:2.5.1-1build1
- libaudit-common 1:3.0.7-1build1
- libaudit1 1:3.0.7-1build1
- libblkid1 2.37.2-4ubuntu3.4
- libbpf0 1:0.5.0-1ubuntu22.04.1
- libbrotli1 1.0.9-2build6
- libbsd0 0.11.5-1
- libbz2-1.0 1.0.8-5build1
- libc-bin 2.35-0ubuntu3.9
- libc6 2.35-0ubuntu3.9
- libcap-ng0 0.7.9-2.2build3
- libcap2 1:2.44-1ubuntu0.22.04.2
- libcap2-bin 1:2.44-1ubuntu0.22.04.2
- libcom-err2 1.46.5-2ubuntu1.2
- libcrypt1 1:4.4.27-1
- libcurl4 7.81.0-1ubuntu1.20
- libdb5.3 5.3.28+dfsg1-0.8ubuntu3
- libdebconfclient0 0.261ubuntu1
- libelf1 0.186-1ubuntu0.1
- libexpat1 2.4.7-1ubuntu0.6
- libext2fs2 1.46.5-2ubuntu1.2
- libffi8 3.4.2-4
- libfontconfig1 2.13.1-4.2ubuntu5
- libfreetype6 2.11.1+dfsg-1ubuntu0.3
- libgcc-s1 12.3.0-1ubuntu1~22.04
- libgcrypt20 1.9.4-3ubuntu3
- libgmp10 2:6.2.1+dfsg-3ubuntu1
- libgnutls30 3.7.3-4ubuntu1.6
- libgpg-error0 1.43-3
- libgssapi-krb5-2 1.19.2-2ubuntu0.6
- libhogweed6 3.7.3-1build2
- libidn2-0 2.3.2-2build1
- libjemalloc2 5.2.1-4ubuntu1
- libk5crypto3 1.19.2-2ubuntu0.6
- libkeyutils1 1.6.1-2ubuntu3
- libkrb5-3 1.19.2-2ubuntu0.6
- libkrb5support0 1.19.2-2ubuntu0.6
- libksba8 1.6.0-2ubuntu0.2
- libldap-2.5-0 2.5.18+dfsg-0ubuntu0.22.04.3
- liblz4-1 1.9.3-2build2
- liblzma5 5.2.5-2ubuntu1
- libmd0 1.0.4-1build1
- libmnl0 1.0.4-3build2
- libmount1 2.37.2-4ubuntu3.4
- libmpdec3 2.5.1-2build2
- libncurses6 6.3-2ubuntu0.1
- libncursesw6 6.3-2ubuntu0.1
- libnettle8 3.7.3-1build2
- libnghttp2-14 1.43.0-1ubuntu0.2
- libnpth0 1.6-3build2
- libnsl2 1.3.0-2build2
- libnuma1 2.0.14-3ubuntu2
- libp11-kit0 0.24.0-6build1
- libpam-modules 1.4.0-11ubuntu2.5
- libpam-modules-bin 1.4.0-11ubuntu2.5
- libpam-runtime 1.4.0-11ubuntu2.5
- libpam0g 1.4.0-11ubuntu2.5
- libpcre2-8-0 10.39-3ubuntu0.1
- libpcre3 2:8.39-13ubuntu0.22.04.1
- libpng16-16 1.6.37-3build5
- libprocps8 2:3.3.17-6ubuntu2.1
- libpsl5 0.21.0-1.2build2
- libpython3-stdlib 3.10.6-1~22.04.1
- libpython3.10-minimal 3.10.12-1~22.04.9
- libpython3.10-stdlib 3.10.12-1~22.04.9
- libreadline8 8.1.2-1
- librtmp1 2.4+20151223.gitfa8646d.1-2build4
- libsasl2-2 2.1.27+dfsg2-3ubuntu1.2
- libsasl2-modules-db 2.1.27+dfsg2-3ubuntu1.2
- libseccomp2 2.5.3-2ubuntu3~22.04.1
- libselinux1 3.3-1build2
- libsemanage-common 3.3-1build2
- libsemanage2 3.3-1build2
- libsepol2 3.3-1build1
- libsmartcols1 2.37.2-4ubuntu3.4
- libsqlite3-0 3.37.2-2ubuntu0.3
- libss2 1.46.5-2ubuntu1.2
- libssh-4 0.9.6-2ubuntu0.22.04.3
- libssl3 3.0.2-0ubuntu1.19
- libstdc++6 12.3.0-1ubuntu1~22.04
- libsystemd0 249.11-0ubuntu3.15
- libtasn1-6 4.18.0-4ubuntu0.1
- libtinfo6 6.3-2ubuntu0.1
- libtirpc-common 1.3.2-2ubuntu0.1
- libtirpc3 1.3.2-2ubuntu0.1
- libudev1 249.11-0ubuntu3.15
- libunistring2 1.0-1
- libuuid1 2.37.2-4ubuntu3.4
- libxtables12 1.8.7-1ubuntu5.2
- libxxhash0 0.8.1-1
- libzstd1 1.4.8+dfsg-3build1
- locales 2.35-0ubuntu3.9
- log4j-over-slf4j 1.7.25
- logback-classic 1.2.9
- logback-core 1.2.9
- login 1:4.8.1-2ubuntu2.2
- logsave 1.46.5-2ubuntu1.2
- lsb-base 11.1.0ubuntu4
- lz4-java 1.8.0
- mawk 1.3.4.20200120-3
- media-types 7.0.0
- metrics-core 3.1.5
- metrics-jvm 3.1.5
- metrics-logback 3.1.5
- mount 2.37.2-4ubuntu3.4
- mxdump 0.14
- ncurses-base 6.3-2ubuntu0.1
- ncurses-bin 6.3-2ubuntu0.1
- netty-all 4.1.58.Final
- netty-tcnative-boringssl-static 2.0.36.Final
- numactl 2.0.14-3ubuntu2
- ohc-core 0.5.1
- ohc-core-j8 0.5.1
- openssl 3.0.2-0ubuntu1.19
- p11-kit 0.24.0-6build1
- p11-kit-modules 0.24.0-6build1
- passwd 1:4.8.1-2ubuntu2.2
- perl-base 5.34.0-3ubuntu1.4
- pinentry-curses 1.1.1-1build2
- procps 2:3.3.17-6ubuntu2.1
- psjava 0.1.19
- python3 3.10.6-1~22.04.1
- python3-minimal 3.10.6-1~22.04.1
- python3.10 3.10.12-1~22.04.9
- python3.10-minimal 3.10.12-1~22.04.9
- readline-common 8.1.2-1
- reporter-config-base 3.0.3
- reporter-config3 3.0.3
- sed 4.8-1ubuntu2
- sensible-utils 0.0.17
- sigar 1.6.4
- sjk-cli 0.14
- sjk-core 0.14
- sjk-json 0.14
- sjk-stacktrace 0.14
- slf4j-api 1.7.25
- snakeyaml 1.26
- snappy-java 1.1.10.4
- snowball-stemmer 1.3.0.581.1
- stdlib go1.18.2
- stream 2.5.2
- stress UNKNOWN
- sysvinit-utils 3.01-1ubuntu1
- tar 1.34+dfsg-1ubuntu0.1.22.04.2
- tzdata 2025b-0ubuntu0.22.04
- ubuntu-keyring 2021.03.26
- ucf 3.0043
- usrmerge 25ubuntu2
- util-linux 2.37.2-4ubuntu3.4
- wget 1.21.2-2ubuntu1.1
- zlib1g 1:1.2.11.dfsg-2ubuntu9.2
- zstd-jni 1.5.5-1
locked components (183)
- HdrHistogram 2.1.12
- ST4 4.0.8
- acl 2.3.2
- airline 0.8
- antlr-runtime 3.5.2
- apache-cassandra 4.1.8
- asm 9.1
- attr 2.5.2
- audit 4.0
- bash 5.2p37
- bash-interactive 5.2p37
- brotli 1.1.0
- bzip2 1.0.8
- bzip2 1.0.8
- caffeine 2.9.2
- cassandra 4.1.8
- cassandra-driver 3.29.1
- cassandra-driver-core 3.11.0
- checker-qual 3.10.0
- chronicle-bytes 2.20.111
- chronicle-core 2.20.126
- chronicle-queue 5.20.123
- chronicle-threads 2.20.111
- chronicle-wire 2.20.117
- click 8.1.7
- commons-cli 1.1
- commons-codec 1.9
- commons-lang3 3.11
- commons-math3 3.2
- concurrent-trees 2.4.0
- coreutils 9.5
- cracklib 2.10.0
- cryptsetup 2.7.5
- curl 8.12.1
- db 4.8.30
- dns-root-data 2024-06-20
- ecj 4.6.1
- elfutils 0.191
- error_prone_annotations 2.5.1
- expat 2.7.1
- fqltool UNKNOWN
- gawk 5.3.1
- gcc 13.3.0
- gcc 13.3.0
- gdbm 1.24
- geomet 1.1.0
- getent-glibc 2.40-66
- getopt 1.1.6
- glibc 2.40-66
- glibc 2.40-66
- gmp-with-cxx 6.3.0
- gmp-with-cxx 6.3.0
- gnugrep 3.11
- gnupg 2.4.5
- gnutar 1.35
- gnutls 3.8.6
- guava 27.0-jre
- gzip 1.13
- high-scale-lib 1.0.6
- hppc 0.8.1
- ipaddress 5.3.3
- iptables 1.8.10
- j2objc-annotations 1.3
- jackson-annotations 2.13.2
- jackson-core 2.13.2
- jackson-databind 2.13.2.2
- jackson-datatype-jsr310 2.13.2
- jamm 0.3.2
- jbcrypt 0.4
- jcl-over-slf4j 1.7.25
- jcommander 1.30
- jctools-core 2.1.1
- jctools-core 3.1.0
- jna 5.9.0
- jrt-fs 11.0.26
- json-c 0.17
- json-simple 1.1
- jsr305 2.0.2
- jvm-attach-api 1.5
- kbd 2.6.4
- kexec-tools 2.0.29
- keyutils 1.6.3
- kmod 31
- kmod 31
- krb5 1.21.3
- lcms2 2.16
- libapparmor 4.0.3
- libarchive 3.7.8
- libassuan 2.5.7
- libbpf 1.4.7
- libcap 2.70
- libcbor 0.11.0
- libev 4.33
- libevent 2.1.12
- libffi 3.4.6
- libfido2 1.15.0
- libgcrypt 1.10.3
- libgpg-error 1.50
- libidn2 2.3.7
- libjpeg-turbo 3.0.4
- libmicrohttpd 1.0.1
- libmnl 1.0.5
- libnetfilter_conntrack 1.1.0
- libnfnetlink 1.0.2
- libnftnl 1.2.8
- libnl 3.10.0
- libpcap 1.10.5
- libpsl 0.21.5
- libpwquality 1.4.5
- libseccomp 2.5.5
- libssh2 1.11.1
- libtasn1 4.20.0
- libunistring 1.2
- libxcrypt 4.4.36
- libxml2 2.13.8
- linux-pam 1.6.1
- log4j-over-slf4j 1.7.25
- logback-classic 1.2.9
- logback-core 1.2.9
- lvm2 2.03.31
- lz4 1.10.0
- lz4-java 1.8.0
- mailcap 2.1.54
- metrics-core 3.1.5
- metrics-jvm 3.1.5
- metrics-logback 3.1.5
- mpdecimal 4.0.0
- mxdump 0.14
- ncurses 6.4.20221231
- nettle 3.10
- netty-all 4.1.58.Final
- netty-tcnative-boringssl-static 2.0.36.Final
- nghttp2 1.64.0
- npth 1.7
- ohc-core 0.5.1
- ohc-core-j8 0.5.1
- openjdk-headless 11.0.26+4
- openssl 3.3.3
- p11-kit 0.25.5
- pcre2 10.44
- pcsclite 2.3.0
- procps 4.0.4
- psjava 0.1.19
- publicsuffix-list-0 unstable-2024-10-25
- python3 3.11.11
- python3.11-cassandra-driver 3.29.1
- python3.11-click 8.1.7
- python3.11-geomet 1.1.0
- python3.11-six 1.16.0
- qrencode 4.1.1
- readline 8.2p13
- reporter-config-base 3.0.3
- reporter-config3 3.0.3
- sigar 1.6.4
- six 1.16.0
- sjk-cli 0.14
- sjk-core 0.14
- sjk-json 0.14
- sjk-stacktrace 0.14
- slf4j-api 1.7.25
- snakeyaml 1.26
- snappy-java 1.1.10.4
- snowball-stemmer 1.3.0.581.1
- sqlite 3.46.1
- stream 2.5.2
- stress UNKNOWN
- systemd 256.10
- systemd-minimal-libs 256.10
- tpm2-tss 4.1.3
- tzdata 2025b
- unbound 1.22.0
- util-linux-minimal 2.39.4
- util-linux-minimal 2.39.4
- util-linux-minimal 2.39.4
- util-linux-minimal 2.39.4
- which 2.21
- xgcc 13.3.0
- xz 5.6.3
- xz 5.6.3
- zlib 1.3.1
- zstd 1.5.6
- zstd 1.5.6
- zstd-jni 1.5.5-1
Download SBOMs
Usage
$
podman pull ghcr.io/armorred/cassandra:5.0-locked
Verify Signature
$
cosign verify --key https://armorred.org/cosign.pub ghcr.io/armorred/cassandra:5.0-locked