17.0.9_9-jre-alpine and 21.0.1_12-jre-alpine latest image vulnerabilities

adoptium / containers

Repo containing the dockerfiles and scripts to produce the official eclipse-temurin containers.

https://hub.docker.com/_/eclipse-temurin/

Apache License 2.0

206 stars 88 forks source link

17.0.9_9-jre-alpine and 21.0.1_12-jre-alpine latest image vulnerabilities #465

Closed syedyusufh closed 7 months ago

syedyusufh commented 7 months ago

Please add the exact image (with tag) that you are using

eclipse-temurin:17.0.9_9-jre-alpine, eclipse-temurin:21.0.1_12-jre-alpine

Please add the version of Docker you are running

latest

What happened?

Requesting to fix the below security vulnerabilities on the latest OpenJDK Eclipse Temurin Docker releases eclipse-temurin:17.0.9_9-jre-alpine and eclipse-temurin:21.0.1_12-jre-alpine

CVE-2023-5363

CVE-2023-5678

Relevant log output

No response

karianna commented 7 months ago

@syedyusufh Those are base container updates controlled by DockerHub, please report your issue there