MariaDB 11.4
locked
latest
Size Reduction
6%
332.9 MB to 314.6 MB (18.3 MB saved)
Component Reduction
70%
152 to 46 packages (106 removed)
Vulnerability Reduction
99%
99 to 1 vulnerabilities (98 eliminated)
Image Comparison
| Property | upstream | locked |
|---|---|---|
| Image | docker.io/library/mariadb:11.4.8 | ghcr.io/armorred/mariadb:11.4-locked |
| Size | 332.9 MB | 314.6 MB |
| Layers | 8 | 49 |
| Components | 152 | 46 |
| Vulnerabilities | 99 | 1 |
| Runtime User | root | 999:999 |
Vulnerability Analysis
upstream
99 total
locked
1 total
Upstream vulnerability details (99)
| CVE ID | Severity | Package | Version | Fixed In |
|---|---|---|---|---|
| UBUNTU-CVE-2016-2781 | medium | coreutils | 9.4-3ubuntu6.1 | unfixed |
| UBUNTU-CVE-2025-5278 | medium | coreutils | 9.4-3ubuntu6.1 | unfixed |
| UBUNTU-CVE-2024-2236 | medium | libgcrypt20 | 1.10.3-2build1 | unfixed |
| USN-7954-1 | high | libtasn1-6 | 4.19.0-3ubuntu0.24.04.1 | 4.18.0-4ubuntu0.2 |
| UBUNTU-CVE-2025-13151 | high | libtasn1-6 | 4.19.0-3ubuntu0.24.04.1 | 4.18.0-4ubuntu0.2 |
| USN-7980-1 | critical | openssl | 3.0.13-0ubuntu3.6 | 3.0.2-0ubuntu1.21 |
| UBUNTU-CVE-2024-41996 | high | openssl | 3.0.13-0ubuntu3.6 | unfixed |
| UBUNTU-CVE-2025-15467 | critical | openssl | 3.0.13-0ubuntu3.6 | 3.0.2-0ubuntu1.21 |
| UBUNTU-CVE-2025-27587 | medium | openssl | 3.0.13-0ubuntu3.6 | unfixed |
| UBUNTU-CVE-2025-68160 | critical | openssl | 3.0.13-0ubuntu3.6 | 1.0.1f-1ubuntu2.27+esm12 |
| UBUNTU-CVE-2025-69418 | critical | openssl | 3.0.13-0ubuntu3.6 | 1.1.1-1ubuntu2.1~18.04.23+esm7 |
| UBUNTU-CVE-2025-69419 | critical | openssl | 3.0.13-0ubuntu3.6 | 1.1.1-1ubuntu2.1~18.04.23+esm7 |
| UBUNTU-CVE-2025-69420 | critical | openssl | 3.0.13-0ubuntu3.6 | 1.1.1-1ubuntu2.1~18.04.23+esm7 |
| UBUNTU-CVE-2025-69421 | critical | openssl | 3.0.13-0ubuntu3.6 | 1.0.1f-1ubuntu2.27+esm12 |
| UBUNTU-CVE-2026-22795 | critical | openssl | 3.0.13-0ubuntu3.6 | 1.1.1-1ubuntu2.1~18.04.23+esm7 |
| UBUNTU-CVE-2026-22796 | critical | openssl | 3.0.13-0ubuntu3.6 | 1.0.1f-1ubuntu2.27+esm12 |
| UBUNTU-CVE-2025-10158 | medium | rsync | 3.2.7-1ubuntu1.2 | unfixed |
| UBUNTU-CVE-2024-54661 | critical | socat | 1.8.0.0-4build3 | unfixed |
| GO-2022-0477 | unknown | stdlib | 1.18.2 | 1.17.11 |
| GO-2022-0515 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0520 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0521 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0522 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0523 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0524 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0525 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0526 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0527 | unknown | stdlib | 1.18.2 | 1.17.12 |
| GO-2022-0531 | unknown | stdlib | 1.18.2 | 1.17.11 |
| GO-2022-0532 | unknown | stdlib | 1.18.2 | 1.17.11 |
| GO-2022-0533 | unknown | stdlib | 1.18.2 | 1.17.11 |
| GO-2022-0537 | unknown | stdlib | 1.18.2 | 1.17.13 |
| GO-2022-0969 | unknown | stdlib | 1.18.2 | 1.18.6 |
| GO-2022-1037 | unknown | stdlib | 1.18.2 | 1.18.7 |
| GO-2022-1038 | unknown | stdlib | 1.18.2 | 1.18.7 |
| GO-2022-1039 | unknown | stdlib | 1.18.2 | 1.18.7 |
| GO-2022-1095 | unknown | stdlib | 1.18.2 | 1.18.8 |
| GO-2022-1143 | unknown | stdlib | 1.18.2 | 1.18.9 |
| GO-2022-1144 | unknown | stdlib | 1.18.2 | 1.18.9 |
| GO-2023-1568 | unknown | stdlib | 1.18.2 | 1.19.6 |
| GO-2023-1569 | unknown | stdlib | 1.18.2 | 1.19.6 |
| GO-2023-1570 | unknown | stdlib | 1.18.2 | 1.19.6 |
| GO-2023-1571 | unknown | stdlib | 1.18.2 | 1.19.6 |
| GO-2023-1621 | unknown | stdlib | 1.18.2 | 1.19.7 |
| GO-2023-1702 | unknown | stdlib | 1.18.2 | 1.19.8 |
| GO-2023-1703 | unknown | stdlib | 1.18.2 | 1.19.8 |
| GO-2023-1704 | unknown | stdlib | 1.18.2 | 1.19.8 |
| GO-2023-1705 | unknown | stdlib | 1.18.2 | 1.19.8 |
| GO-2023-1751 | unknown | stdlib | 1.18.2 | 1.19.9 |
| GO-2023-1752 | unknown | stdlib | 1.18.2 | 1.19.9 |
| GO-2023-1753 | unknown | stdlib | 1.18.2 | 1.19.9 |
| GO-2023-1840 | unknown | stdlib | 1.18.2 | 1.19.10 |
| GO-2023-1878 | unknown | stdlib | 1.18.2 | 1.19.11 |
| GO-2023-1987 | unknown | stdlib | 1.18.2 | 1.19.12 |
| GO-2023-2041 | unknown | stdlib | 1.18.2 | 1.20.8 |
| GO-2023-2043 | unknown | stdlib | 1.18.2 | 1.20.8 |
| GO-2023-2102 | unknown | stdlib | 1.18.2 | 1.20.10 |
| GO-2023-2185 | unknown | stdlib | 1.18.2 | 1.20.11 |
| GO-2023-2186 | unknown | stdlib | 1.18.2 | 1.20.11 |
| GO-2023-2375 | unknown | stdlib | 1.18.2 | 1.20.0 |
| GO-2023-2382 | unknown | stdlib | 1.18.2 | 1.20.12 |
| GO-2024-2598 | unknown | stdlib | 1.18.2 | 1.21.8 |
| GO-2024-2599 | unknown | stdlib | 1.18.2 | 1.21.8 |
| GO-2024-2600 | unknown | stdlib | 1.18.2 | 1.21.8 |
| GO-2024-2609 | unknown | stdlib | 1.18.2 | 1.21.8 |
| GO-2024-2610 | unknown | stdlib | 1.18.2 | 1.21.8 |
| GO-2024-2687 | unknown | stdlib | 1.18.2 | 1.21.9 |
| GO-2024-2887 | unknown | stdlib | 1.18.2 | 1.21.11 |
| GO-2024-2888 | unknown | stdlib | 1.18.2 | 1.21.11 |
| GO-2024-2963 | unknown | stdlib | 1.18.2 | 1.21.12 |
| GO-2024-3105 | unknown | stdlib | 1.18.2 | 1.22.7 |
| GO-2024-3106 | unknown | stdlib | 1.18.2 | 1.22.7 |
| GO-2024-3107 | unknown | stdlib | 1.18.2 | 1.22.7 |
| GO-2025-3373 | unknown | stdlib | 1.18.2 | 1.22.11 |
| GO-2025-3420 | unknown | stdlib | 1.18.2 | 1.22.11 |
| GO-2025-3447 | unknown | stdlib | 1.18.2 | 1.22.12 |
| GO-2025-3563 | unknown | stdlib | 1.18.2 | 1.23.8 |
| GO-2025-3750 | unknown | stdlib | 1.18.2 | 1.23.10 |
| GO-2025-3751 | unknown | stdlib | 1.18.2 | 1.23.10 |
| GO-2025-3849 | unknown | stdlib | 1.18.2 | 1.23.12 |
| GO-2025-3956 | unknown | stdlib | 1.18.2 | 1.23.12 |
| GO-2025-4006 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4007 | unknown | stdlib | 1.18.2 | 1.24.9 |
| GO-2025-4008 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4009 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4010 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4011 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4012 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4013 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4014 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4015 | unknown | stdlib | 1.18.2 | 1.24.8 |
| GO-2025-4155 | unknown | stdlib | 1.18.2 | 1.24.11 |
| GO-2025-4175 | unknown | stdlib | 1.18.2 | 1.24.11 |
| GO-2026-4337 | unknown | stdlib | 1.18.2 | 1.24.13 |
| GO-2026-4340 | unknown | stdlib | 1.18.2 | 1.24.12 |
| GO-2026-4341 | unknown | stdlib | 1.18.2 | 1.24.12 |
| GO-2026-4342 | unknown | stdlib | 1.18.2 | 1.24.12 |
| GO-2026-4403 | unknown | stdlib | 1.18.2 | 1.23.9 |
| UBUNTU-CVE-2025-45582 | medium | tar | 1.35+dfsg-3build1 | unfixed |
Locked vulnerability details (1)
| CVE ID | Severity | Package | Version | Fixed In |
|---|---|---|---|---|
| OSV-2021-777 | high | libxml2 | 2.13.8 | unfixed |
Software Bill of Materials
upstream components (152)
- adduser 3.137ubuntu1
- apt 2.8.3
- base-files 13ubuntu10.3
- base-passwd 3.6.3build1
- bash 5.2.21-2ubuntu4
- bsdutils 1:2.39.3-9ubuntu6.3
- ca-certificates 20240203
- coreutils 9.4-3ubuntu6.1
- dash 0.5.12-6ubuntu5
- debconf 1.5.86ubuntu1
- debianutils 5.17build1
- diffutils 1:3.10-1build1
- dpkg 1.22.6ubuntu6.5
- e2fsprogs 1.47.0-2.4~exp1ubuntu4.1
- findutils 4.9.0-5build1
- galera-4 26.4.23-ubu2404
- gawk 1:5.2.1-2build3
- gcc-14-base 14.2.0-4ubuntu2~24.04
- github.com/moby/sys/user v0.1.0
- github.com/tianon/gosu UNKNOWN
- golang.org/x/sys v0.13.0
- gpg 2.4.4-2ubuntu17.3
- gpgconf 2.4.4-2ubuntu17.3
- gpgv 2.4.4-2ubuntu17.3
- grep 3.11-4build1
- gzip 1.12-1ubuntu3.1
- hostname 3.23+nmu2ubuntu2
- init-system-helpers 1.66ubuntu1
- iproute2 6.1.0-1ubuntu6.2
- libacl1 2.3.2-1build1.1
- libaio1t64 0.3.113-6build1.1
- libapt-pkg6.0t64 2.8.3
- libassuan0 2.5.6-1build1
- libattr1 1:2.5.2-1build1.1
- libaudit-common 1:3.1.2-2.1build1.1
- libaudit1 1:3.1.2-2.1build1.1
- libblkid1 2.39.3-9ubuntu6.3
- libbpf1 1:1.3.0-2build2
- libbsd0 0.12.1-1build1.1
- libbz2-1.0 1.0.8-5.1build0.1
- libc-bin 2.39-0ubuntu8.6
- libc6 2.39-0ubuntu8.6
- libcap-ng0 0.8.4-2build2
- libcap2 1:2.66-5ubuntu2.2
- libcap2-bin 1:2.66-5ubuntu2.2
- libcom-err2 1.47.0-2.4~exp1ubuntu4.1
- libconfig-inifiles-perl 3.000003-2
- libcrypt1 1:4.4.36-4build1
- libdb5.3t64 5.3.28+dfsg2-7
- libdbi-perl 1.643-4build3
- libdebconfclient0 0.271ubuntu3
- libedit2 3.1-20230828-1build1
- libelf1t64 0.190-1.1ubuntu0.1
- libext2fs2t64 1.47.0-2.4~exp1ubuntu4.1
- libffi8 3.4.6-1build1
- libgcc-s1 14.2.0-4ubuntu2~24.04
- libgcrypt20 1.10.3-2build1
- libgdbm-compat4t64 1.23-5.1build1
- libgdbm6t64 1.23-5.1build1
- libgmp10 2:6.3.0+dfsg-2ubuntu6.1
- libgnutls30t64 3.8.3-1.1ubuntu3.4
- libgpg-error0 1.47-3build2.1
- libgssapi-krb5-2 1.20.1-6ubuntu2.6
- libhogweed6t64 3.9.1-2.2build1.1
- libidn2-0 2.3.7-2build1.1
- libjemalloc2 5.3.0-2build1
- libk5crypto3 1.20.1-6ubuntu2.6
- libkeyutils1 1.6.3-3build1
- libkrb5-3 1.20.1-6ubuntu2.6
- libkrb5support0 1.20.1-6ubuntu2.6
- liblz4-1 1.9.4-1build1.1
- liblzma5 5.6.1+really5.4.5-1ubuntu0.2
- libmariadb3 1:11.4.8+maria~ubu2404
- libmd0 1.1.0-2build1.1
- libmnl0 1.0.5-2build1
- libmount1 2.39.3-9ubuntu6.3
- libmpfr6 4.2.1-1build1.1
- libncurses6 6.4+20240113-1ubuntu2
- libncursesw6 6.4+20240113-1ubuntu2
- libnettle8t64 3.9.1-2.2build1.1
- libnpth0t64 1.6-3.1build1
- libp11-kit0 0.25.3-4ubuntu2.1
- libpam-modules 1.5.3-5ubuntu5.5
- libpam-modules-bin 1.5.3-5ubuntu5.5
- libpam-runtime 1.5.3-5ubuntu5.5
- libpam0g 1.5.3-5ubuntu5.5
- libpcre2-8-0 10.42-4ubuntu2.1
- libperl5.38t64 5.38.2-3.2ubuntu0.2
- libpopt0 1.19+dfsg-1build1
- libproc2-0 2:4.0.4-4ubuntu3.2
- libreadline8t64 8.2-4build1
- libseccomp2 2.5.5-1ubuntu3.1
- libselinux1 3.5-2ubuntu2.1
- libsemanage-common 3.5-1build5
- libsemanage2 3.5-1build5
- libsepol2 3.5-2build1
- libsigsegv2 2.14-1ubuntu2
- libsmartcols1 2.39.3-9ubuntu6.3
- libsqlite3-0 3.45.1-1ubuntu2.5
- libss2 1.47.0-2.4~exp1ubuntu4.1
- libssl3t64 3.0.13-0ubuntu3.6
- libstdc++6 14.2.0-4ubuntu2~24.04
- libsystemd0 255.4-1ubuntu8.10
- libtasn1-6 4.19.0-3ubuntu0.24.04.1
- libtinfo6 6.4+20240113-1ubuntu2
- libtirpc-common 1.3.4+ds-1.1build1
- libtirpc3t64 1.3.4+ds-1.1build1
- libudev1 255.4-1ubuntu8.10
- libunistring5 1.1-2build1.1
- liburing2 2.5-1build1
- libuuid1 2.39.3-9ubuntu6.3
- libwrap0 7.6.q-33
- libxtables12 1.8.10-3ubuntu2
- libxxhash0 0.8.2-2build1
- libzstd1 1.5.5+dfsg2-2build1.1
- login 1:4.13+dfsg1-4ubuntu3.2
- logsave 1.47.0-2.4~exp1ubuntu4.1
- lsof 4.95.0-1build3
- mariadb-backup 1:11.4.8+maria~ubu2404
- mariadb-client 1:11.4.8+maria~ubu2404
- mariadb-client-core 1:11.4.8+maria~ubu2404
- mariadb-common 1:11.4.8+maria~ubu2404
- mariadb-server 1:11.4.8+maria~ubu2404
- mariadb-server-core 1:11.4.8+maria~ubu2404
- mawk 1.3.4.20240123-1build1
- mount 2.39.3-9ubuntu6.3
- mysql-common 1:11.4.8+maria~ubu2404
- ncurses-base 6.4+20240113-1ubuntu2
- ncurses-bin 6.4+20240113-1ubuntu2
- openssl 3.0.13-0ubuntu3.6
- passwd 1:4.13+dfsg1-4ubuntu3.2
- perl 5.38.2-3.2ubuntu0.2
- perl-base 5.38.2-3.2ubuntu0.2
- perl-modules-5.38 5.38.2-3.2ubuntu0.2
- procps 2:4.0.4-4ubuntu3.2
- psmisc 23.7-1build1
- pwgen 2.08-2build2
- readline-common 8.2-4build1
- rsync 3.2.7-1ubuntu1.2
- sed 4.9-2build1
- sensible-utils 0.0.22
- socat 1.8.0.0-4build3
- stdlib go1.18.2
- sysvinit-utils 3.08-6ubuntu3
- tar 1.35+dfsg-3build1
- tzdata 2025b-0ubuntu0.24.04.1
- ubuntu-keyring 2023.11.28.1
- unminimize 0.2.1
- util-linux 2.39.3-9ubuntu6.3
- xz-utils 5.6.1+really5.4.5-1ubuntu0.2
- zlib1g 1:1.3.dfsg-3.1ubuntu2.1
- zstd 1.5.5+dfsg2-2build1.1
locked components (46)
- acl 2.3.2
- attr 2.5.2
- audit 4.0
- bash 5.2p37
- brotli 1.1.0
- bzip2 1.0.8
- coreutils 9.5
- cracklib 2.10.0
- curl 8.12.1
- db 4.8.30
- gcc 13.3.0
- gcc 13.3.0
- glibc 2.40-66
- glibc 2.40-66
- glibc 2.40-66
- gmp-with-cxx 6.3.0
- gnugrep 3.11
- gnused 4.9
- judy 1.0.5
- keyutils 1.6.3
- krb5 1.21.3
- less 668
- libcap 2.70
- libidn2 2.3.7
- libpsl 0.21.5
- libssh2 1.11.1
- libunistring 1.2
- liburing 2.8
- libxcrypt 4.4.36
- libxml2 2.13.8
- linux-headers 6.10
- linux-pam 1.6.1
- lz4 1.10.0
- lzo 2.10
- mariadb-server 11.4.8
- ncurses 6.4.20221231
- nghttp2 1.64.0
- openssl 3.3.3
- pcre2 10.44
- publicsuffix-list-0 unstable-2024-10-25
- snappy 1.2.1
- systemd-minimal-libs 256.10
- xgcc 13.3.0
- xz 5.6.3
- zlib 1.3.1
- zstd 1.5.6
Download SBOMs
Usage
$
podman pull ghcr.io/armorred/mariadb:11.4-locked
Verify Signature
$
cosign verify --key https://armorred.org/cosign.pub ghcr.io/armorred/mariadb:11.4-locked