bratkartoffel
commented
7 months ago This issue is not specific to the alpine base image, but to the aports. Those issues should be opened at https://gitlab.alpinelinux.org/
Your mentioned CVEs were already fixed by openjdk17-17.0.8_p7-r0, which was released 2023-07-23.
openjdk-18 and above are currently in the edge/testing repository. they need to be in the main / community release since openjdk-17 have exploitable vulnerabilities as below.
CVE-2023-22044 CVE-2023-22049 CVE-2023-22006 CVE-2023-22041 CVE-2023-22045 CVE-2023-22036