quay.io/opstree/redis:v8.4.0

Base OS: alpine 3.22.2 24 vulnerabilities fixed
Patched Image
quay.io/verity/opstree/redis:v8.4.0-patched
Supply Chain
Full compliance details
Signed SLSA L3 SBOM Rekor
Verify this artifact
Cosign signature
cosign verify \
  --certificate-identity-regexp "https://github.com/descope/verity/.github/workflows/" \
  --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
  quay.io/verity/opstree/redis:v8.4.0-patched
Build provenance
gh attestation verify \
  oci://quay.io/verity/opstree/redis:v8.4.0-patched \
  --owner descope

Pre-patch scan

Found 24 vulnerabilit ies in the original image. 24 fixed by Copa.

2CRITICAL4HIGH18MEDIUM

Vulnerability details

IDPackageInstalledFixedSeverity
CVE-2025-15467libcrypto33.5.4-r03.5.5-r0 CRITICAL
CVE-2025-15467libssl33.5.4-r03.5.5-r0 CRITICAL
CVE-2025-69419libcrypto33.5.4-r03.5.5-r0 HIGH
CVE-2025-69421libcrypto33.5.4-r03.5.5-r0 HIGH
CVE-2025-69419libssl33.5.4-r03.5.5-r0 HIGH
CVE-2025-69421libssl33.5.4-r03.5.5-r0 HIGH
CVE-2025-11187libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-15468libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-15469libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-66199libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-68160libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-69418libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-69420libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2026-22795libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2026-22796libcrypto33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-11187libssl33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-15468libssl33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-15469libssl33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-66199libssl33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-68160libssl33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-69418libssl33.5.4-r03.5.5-r0 MEDIUM
CVE-2025-69420libssl33.5.4-r03.5.5-r0 MEDIUM
CVE-2026-22795libssl33.5.4-r03.5.5-r0 MEDIUM
CVE-2026-22796libssl33.5.4-r03.5.5-r0 MEDIUM
Original image reference
quay.io/opstree/redis:v8.4.0