Hi,
Our security scanner has identified the following vulnerability in the Docker image prom/pushgateway:v1.11.3 (also referenced as prometheus/pushgateway:v1.11.3):
Could you please upgrade the image to a version that includes the fixed dependency?
Thank you!
Vulnerability Report
Vulnerabilities Found
| Library |
Vulnerability |
Severity |
Status |
Installed Version |
Fixed Version |
Title |
| stdlib |
CVE-2026-42504 |
HIGH |
fixed |
v1.26.3 |
1.25.11, 1.26.4 |
Decoding a maliciously-crafted MIME header containing many invalid encoded words |
Details:
https://avd.aquasec.com/nvd/cve-2026-42504
Summary:
- Library: stdlib
- Severity: High
- Status: Fixed
- Installed Version: v1.26.3
- Recommended Version: 1.26.4
Hi,
Our security scanner has identified the following vulnerability in the Docker image
prom/pushgateway:v1.11.3(also referenced asprometheus/pushgateway:v1.11.3):Could you please upgrade the image to a version that includes the fixed dependency?
Thank you!
Vulnerability Report
Vulnerabilities Found
Details:
https://avd.aquasec.com/nvd/cve-2026-42504
Summary: