search

Azure / azure-functions-docker

This repo contains the base Docker images for working with azure functions
MIT License
268 stars 118 forks source link

CVE-2021-26701 for java:4-java21-build image #1109

Open amberwu7791 opened 4 months ago

amberwu7791 commented 4 months ago

Description: Customer are using the Docker image mcr.microsoft.com/azure-functions/java:4-java21-build. The powershell version which is effect CVE-2021-26701.

Steps to Reproduce: Use mcr.microsoft.com/azure-functions/java:4-java21-build in a Dockerfile. Run a vulnerability scan (Cusotmer using jfrog xray).

Expected Behavior: No critical vulnerabilities should be present.