Rclone

✓ Official Partner

Rclone ("rsync for cloud storage") is a command-line program to sync files and directories to and from different cloud storage providers.

Official Partner Image: This image is created in partnership with the Rclone maintainers, ensuring enterprise-grade security with direct upstream support.

6 tags

Built Aug 8, 2025

Scanned Sep 29, 2025

0 vulnerabilities fixed

0 Vulnerabilities Fixed

SBOM Available

Signature Verified

Official Partnership

Pull Access Restricted

Subscribe to unlock access and pull this image from our secure registry. Enjoy up-to-date, verified, and secure container images for your projects.

README Tags Security SBOM Provenance

Vulnerability Summary

No vulnerabilities found

Critical

High

Medium

Low

Vulnerabilities Fixed in This Build

These vulnerabilities were present in the upstream image but fixed in SecureBuild's version when this image was built.

CVE ID	Severity	Description	Package	Version
CVE-2025-4575	Medium		libcrypto3	3.5.0-r0
CVE-2025-4575	Medium		libssl3	3.5.0-r0
CVE-2025-46394	Low	In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.	busybox	1.37.0-r18
CVE-2025-46394	Low	In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.	busybox-binsh	1.37.0-r18
CVE-2025-46394	Low	In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.	ssl_client	1.37.0-r18
CVE-2024-58251	Low	In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim.	busybox	1.37.0-r18
CVE-2024-58251	Low	In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim.	busybox-binsh	1.37.0-r18
CVE-2024-58251	Low	In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim.	ssl_client	1.37.0-r18

Security Status

Vulnerability scan results

No Vulnerabilities Found

This image version has no known security vulnerabilities.

CVE ID

Severity

Description

Package

Version

Actions

CVE-2025-4575

Medium

libcrypto3

3.5.0-r0

CVE-2025-4575

Medium

libssl3

3.5.0-r0

CVE-2025-46394

Low

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.

busybox

1.37.0-r18

CVE-2025-46394

Low

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.

busybox-binsh

1.37.0-r18

CVE-2025-46394

Low

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.

ssl_client

1.37.0-r18

CVE-2024-58251

Low

In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim.

busybox

1.37.0-r18

CVE-2024-58251

Low

busybox-binsh

1.37.0-r18

CVE-2024-58251

Low

ssl_client

1.37.0-r18