dsmiley
commented
2 years ago Upgrades of our base image / periodic re-building is handled by the official-library team at Docker for all official Docker images. This is why it can be observed that our tags get updated from time to time despite no action on our/my part: https://hub.docker.com/_/solr?tab=tags
That said, I don't know about that specific CVE and when it would be handled by the official-library team.
Please upgrade curl version to 7.83.0-1 while building the docker image
pls refer https://security-tracker.debian.org/tracker/CVE-2021-22945
same for the libcurl4 binary