docker-library / cassandra

Docker Official Image packaging for Cassandra
Apache License 2.0
263 stars 281 forks source link

Security vulnerabilities for stdlib 1.18.2 #285

Closed george0st closed 1 week ago

george0st commented 1 week ago

It will be fine to use stdlib in newer version, current stdlib 1.18.2 has these critical vulnerabilities, e.g.: CVE-2024-24790 CVE-2023-24540 CVE-2023-24538 CVE-2024-34158 CVE-2024-34156 CVE-2024-24791 CVE-2024-24784 CVE-2023-45288 CVE-2023-45287 ...

tianon commented 1 week ago

Pretty sure this is a duplicate of https://github.com/docker-library/cassandra/issues/276