Closed acim closed 3 years ago
Rebuilds will be handled by the Docker Official Images team when the base image changes. Also this image does not even use curl apart from the initial build, so a curl CVE is completely irrelevant.
curl is not a part of alpine, it is probably apk added by php:7.4-alpine and there won't be a alpine release addressing this so I am not sure how soon we will have another alpine tag, but let's hope php will address this. I just have a Helm chart for Adminer released on ArtifactHub which shows rating F for the image. But never mind, I understand your point. Thank you.
Please rebuild the image because of the CVE-2021-22945 vulnerability in curl. It probably comes from php:7.4-alpine but they may have later version.