search

GoogleCloudPlatform / cloud-sdk-docker

Google Cloud CLI Docker Image - Docker Image containing the gcloud CLI and its bundled components.
https://cloud.google.com/sdk/docs/downloads-docker
Apache License 2.0
745 stars 230 forks source link

Alpine version has CVE-2024-5535 critical vulnerability #466

Open nroose opened 1 month ago

nroose commented 1 month ago

The alpine version of this image seems to be vulnerable to CVE-2024-5535. I think it's only fixed in Alpine 3.20.

bobidle commented 1 month ago

Because of #451/#453 the image is downgraded to Alpine 3.19, it will be upgraded when the issue is resolved.