Closed alwibrm closed 1 year ago
The latest Alpine Images (e.g. 3.15.4) contain libxml2 2.9.13 as a dependency. For this version of libxml2 a CVE report with critical score was filed: https://www.cybersecurity-help.cz/vdb/SB2022050305. A fix is available with libxml2 2.9.14: https://gitlab.gnome.org/GNOME/libxml2/-/releases
The latest image contains 2.9.14.
alwibrm
commented
1 year ago alwibrm
commented
1 year ago
The latest Alpine Images (e.g. 3.15.4) contain libxml2 2.9.13 as a dependency. For this version of libxml2 a CVE report with critical score was filed: https://www.cybersecurity-help.cz/vdb/SB2022050305. A fix is available with libxml2 2.9.14: https://gitlab.gnome.org/GNOME/libxml2/-/releases