search

docker-library / python

Docker Official Image packaging for Python
https://www.python.org/
MIT License
2.54k stars 1.07k forks source link

CVE-2024-5171 #962

Open devnamednor opened 2 weeks ago

devnamednor commented 2 weeks ago

I'm running into an issue with CVE-2024-5171 for python:3.10.15-bullseye. A fix has been released according to https://security-tracker.debian.org/tracker/CVE-2024-5171.

LaurentGoderre commented 2 weeks ago

You could switch to the slim version and maybe use multi-stage build.

See: https://github.com/docker-library/faq?tab=readme-ov-file#why-does-my-security-scanner-show-that-an-image-has-cves