docker.io/library/rabbitmq:4.2.3
Base OS: ubuntu 24.04 6 vulnerabilities fixed
Patched Image
quay.io/verity/library/rabbitmq:4.2.3-patched
Supply Chain
Full compliance details
Signed
SLSA L3
SBOM
Rekor
Verify this artifact
Cosign signature
cosign verify \ --certificate-identity-regexp "https://github.com/descope/verity/.github/workflows/" \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ quay.io/verity/library/rabbitmq:4.2.3-patched
Build provenance
gh attestation verify \ oci://quay.io/verity/library/rabbitmq:4.2.3-patched \ --owner descope
Pre-patch scan
Found 6 vulnerabilit ies in the original image. 6 fixed by Copa.
6MEDIUM
Vulnerability details
| ID | Package | Installed | Fixed | Severity |
|---|---|---|---|---|
| CVE-2025-15281 | libc-bin | 2.39-0ubuntu8.6 | 2.39-0ubuntu8.7 | MEDIUM |
| CVE-2026-0861 | libc-bin | 2.39-0ubuntu8.6 | 2.39-0ubuntu8.7 | MEDIUM |
| CVE-2026-0915 | libc-bin | 2.39-0ubuntu8.6 | 2.39-0ubuntu8.7 | MEDIUM |
| CVE-2025-15281 | libc6 | 2.39-0ubuntu8.6 | 2.39-0ubuntu8.7 | MEDIUM |
| CVE-2026-0861 | libc6 | 2.39-0ubuntu8.6 | 2.39-0ubuntu8.7 | MEDIUM |
| CVE-2026-0915 | libc6 | 2.39-0ubuntu8.6 | 2.39-0ubuntu8.7 | MEDIUM |
Original image reference
docker.io/library/rabbitmq:4.2.3