search

dperson / samba

Samba docker container
GNU Affero General Public License v3.0
1.54k stars 517 forks source link

Image with criticals vulnerabilities #379

Open JSGUYOT opened 3 years ago

JSGUYOT commented 3 years ago

Hello,

I used your docker container, thank's for our job :) The container has three criticals vulnerabilty who's can be corrected :

image

Our security forbids us to do a docker pull on containers with critical vulnerabilities. Could you take my request and correct these vulnerabilities ?

Thanks in advance.

Regards,

justsomeguyontheinternet commented 3 years ago

what tool/website did you get this from? can you provide a link?

there hasn't been a new commit or amd64 build in about a year. i wouldn't hold your breath.

GoingOffRoading commented 3 years ago

Create your own branch?

Erriez commented 2 years ago 
$ date
Sun 19 December 2021 20:25:14 CET

$ docker scan dperson/samba:latest

Testing dperson/samba:latest...

✗ Low severity vulnerability found in openssl/libcrypto1.1
  Description: Inadequate Encryption Strength
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENSSL-1075736
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openssl/libcrypto1.1@1.1.1g-r0
  From: meta-common-packages@meta > openssl/libssl1.1@1.1.1g-r0
  Fixed in: 1.1.1j-r0

✗ Low severity vulnerability found in avahi/avahi-libs
  Description: NULL Pointer Dereference
  Info: https://snyk.io/vuln/SNYK-ALPINE312-AVAHI-1319943
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > avahi/avahi-libs@0.8-r0
  Fixed in: 0.8-r2

✗ Medium severity vulnerability found in zstd/zstd-libs
  Description: CVE-2021-24032
  Info: https://snyk.io/vuln/SNYK-ALPINE312-ZSTD-1315098
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > zstd/zstd-libs@1.4.5-r0
  Fixed in: 1.4.9-r0

✗ Medium severity vulnerability found in samba/libsmbclient
  Description: Improper Privilege Management
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-1038243
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.9-r0

✗ Medium severity vulnerability found in samba/libsmbclient
  Description: NULL Pointer Dereference
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-1038244
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.9-r0

✗ Medium severity vulnerability found in samba/libsmbclient
  Description: Unchecked Error Condition
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-1038245
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.9-r0

✗ Medium severity vulnerability found in samba/libsmbclient
  Description: Out-of-bounds Read
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-1279498
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.15-r0

✗ Medium severity vulnerability found in samba/libsmbclient
  Description: NULL Pointer Dereference
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-609335
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.5-r0

✗ Medium severity vulnerability found in samba/libsmbclient
  Description: Use After Free
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-609338
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.5-r0

✗ Medium severity vulnerability found in p11-kit/p11-kit
  Description: Out-of-bounds Read
  Info: https://snyk.io/vuln/SNYK-ALPINE312-P11KIT-1050971
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > p11-kit/p11-kit@0.23.20-r5
  Fixed in: 0.23.22-r0

✗ Medium severity vulnerability found in openssl/libcrypto1.1
  Description: NULL Pointer Dereference
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENSSL-1050745
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openssl/libcrypto1.1@1.1.1g-r0
  From: meta-common-packages@meta > openssl/libssl1.1@1.1.1g-r0
  Fixed in: 1.1.1i-r0

✗ Medium severity vulnerability found in openssl/libcrypto1.1
  Description: Integer Overflow or Wraparound
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENSSL-1075734
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openssl/libcrypto1.1@1.1.1g-r0
  From: meta-common-packages@meta > openssl/libssl1.1@1.1.1g-r0
  Fixed in: 1.1.1j-r0

✗ Medium severity vulnerability found in openssl/libcrypto1.1
  Description: NULL Pointer Dereference
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENSSL-1089237
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openssl/libcrypto1.1@1.1.1g-r0
  From: meta-common-packages@meta > openssl/libssl1.1@1.1.1g-r0
  Fixed in: 1.1.1k-r0

✗ Medium severity vulnerability found in musl/musl-utils
  Description: Out-of-bounds Write
  Info: https://snyk.io/vuln/SNYK-ALPINE312-MUSL-1042762
  Introduced through: musl/musl-utils@1.1.24-r9, libc-dev/libc-utils@0.7.2-r3, meta-common-packages@meta
  From: musl/musl-utils@1.1.24-r9
  From: libc-dev/libc-utils@0.7.2-r3 > musl/musl-utils@1.1.24-r9
  From: meta-common-packages@meta > musl/musl@1.1.24-r9
  Fixed in: 1.1.24-r10

✗ Medium severity vulnerability found in busybox/busybox
  Description: CVE-2021-42374
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920717
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ Medium severity vulnerability found in avahi/avahi-libs
  Description: CVE-2021-3468
  Info: https://snyk.io/vuln/SNYK-ALPINE312-AVAHI-1312931
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > avahi/avahi-libs@0.8-r0
  Fixed in: 0.8-r1

✗ High severity vulnerability found in samba/libsmbclient
  Description: Out-of-bounds Read
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-1089708
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.14-r0

✗ High severity vulnerability found in samba/libsmbclient
  Description: Out-of-bounds Read
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-1089709
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.14-r0

✗ High severity vulnerability found in samba/libsmbclient
  Description: Resource Exhaustion
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-609336
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.5-r0

✗ High severity vulnerability found in samba/libsmbclient
  Description: Improper Input Validation
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-609337
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.5-r0

✗ High severity vulnerability found in p11-kit/p11-kit
  Description: Integer Overflow or Wraparound
  Info: https://snyk.io/vuln/SNYK-ALPINE312-P11KIT-1050969
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > p11-kit/p11-kit@0.23.20-r5
  Fixed in: 0.23.22-r0

✗ High severity vulnerability found in p11-kit/p11-kit
  Description: Out-of-bounds Write
  Info: https://snyk.io/vuln/SNYK-ALPINE312-P11KIT-1050970
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > p11-kit/p11-kit@0.23.20-r5
  Fixed in: 0.23.22-r0

✗ High severity vulnerability found in openssl/libcrypto1.1
  Description: Integer Overflow or Wraparound
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENSSL-1075735
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openssl/libcrypto1.1@1.1.1g-r0
  From: meta-common-packages@meta > openssl/libssl1.1@1.1.1g-r0
  Fixed in: 1.1.1j-r0

✗ High severity vulnerability found in openssl/libcrypto1.1
  Description: Improper Certificate Validation
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENSSL-1089238
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openssl/libcrypto1.1@1.1.1g-r0
  From: meta-common-packages@meta > openssl/libssl1.1@1.1.1g-r0
  Fixed in: 1.1.1k-r0

✗ High severity vulnerability found in openssl/libcrypto1.1
  Description: Out-of-bounds Read
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENSSL-1569450
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openssl/libcrypto1.1@1.1.1g-r0
  From: meta-common-packages@meta > openssl/libssl1.1@1.1.1g-r0
  Fixed in: 1.1.1l-r0

✗ High severity vulnerability found in openldap/libldap
  Description: Reachable Assertion
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENLDAP-1050345
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openldap/libldap@2.4.50-r0
  Fixed in: 2.4.50-r1

✗ High severity vulnerability found in openldap/libldap
  Description: NULL Pointer Dereference
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENLDAP-1050346
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openldap/libldap@2.4.50-r0
  Fixed in: 2.4.50-r1

✗ High severity vulnerability found in openldap/libldap
  Description: Reachable Assertion
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENLDAP-1050347
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openldap/libldap@2.4.50-r0
  Fixed in: 2.4.50-r1

✗ High severity vulnerability found in openldap/libldap
  Description: Reachable Assertion
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENLDAP-1079019
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openldap/libldap@2.4.50-r0
  Fixed in: 2.4.50-r2

✗ High severity vulnerability found in ncurses/ncurses-libs
  Description: Out-of-bounds Write
  Info: https://snyk.io/vuln/SNYK-ALPINE312-NCURSES-2313024
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > ncurses/ncurses-libs@6.2_p20200523-r0
  From: meta-common-packages@meta > ncurses/ncurses-terminfo-base@6.2_p20200523-r0
  Fixed in: 6.2_p20200523-r1

✗ High severity vulnerability found in gnutls/gnutls
  Description: Out-of-bounds Write
  Info: https://snyk.io/vuln/SNYK-ALPINE312-GNUTLS-609795
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > gnutls/gnutls@3.6.14-r0
  Fixed in: 3.6.15-r0

✗ High severity vulnerability found in busybox/busybox
  Description: Improper Handling of Exceptional Conditions
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1089799
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.32.1-r4

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42381
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920710
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42379
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920711
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42380
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920712
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42384
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920729
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42385
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920730
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42378
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920731
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42386
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920739
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42382
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920754
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in busybox/busybox
  Description: CVE-2021-42383
  Info: https://snyk.io/vuln/SNYK-ALPINE312-BUSYBOX-1920758
  Introduced through: busybox/busybox@1.31.1-r19, alpine-baselayout/alpine-baselayout@3.2.0-r7, bash/bash@5.0.17-r0, busybox/ssl_client@1.31.1-r19
  From: busybox/busybox@1.31.1-r19
  From: alpine-baselayout/alpine-baselayout@3.2.0-r7 > busybox/busybox@1.31.1-r19
  From: bash/bash@5.0.17-r0 > busybox/busybox@1.31.1-r19
  and 1 more...
  Fixed in: 1.31.1-r21

✗ High severity vulnerability found in apk-tools/apk-tools
  Description: Out-of-bounds Read
  Info: https://snyk.io/vuln/SNYK-ALPINE312-APKTOOLS-1246338
  Introduced through: apk-tools/apk-tools@2.10.5-r1
  From: apk-tools/apk-tools@2.10.5-r1
  Fixed in: 2.10.6-r0

✗ Critical severity vulnerability found in samba/libsmbclient
  Description: Improper Privilege Management
  Info: https://snyk.io/vuln/SNYK-ALPINE312-SAMBA-1016155
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > samba/libsmbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/libwbclient@4.12.2-r1
  From: meta-common-packages@meta > samba/samba@4.12.2-r1
  and 8 more...
  Fixed in: 4.12.7-r0

✗ Critical severity vulnerability found in openssl/libcrypto1.1
  Description: Buffer Overflow
  Info: https://snyk.io/vuln/SNYK-ALPINE312-OPENSSL-1569452
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > openssl/libcrypto1.1@1.1.1g-r0
  From: meta-common-packages@meta > openssl/libssl1.1@1.1.1g-r0
  Fixed in: 1.1.1l-r0

✗ Critical severity vulnerability found in lz4/lz4-libs
  Description: Out-of-bounds Write
  Info: https://snyk.io/vuln/SNYK-ALPINE312-LZ4-2313023
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > lz4/lz4-libs@1.9.2-r0
  Fixed in: 1.9.2-r1

✗ Critical severity vulnerability found in gnutls/gnutls
  Description: Use After Free
  Info: https://snyk.io/vuln/SNYK-ALPINE312-GNUTLS-1088977
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > gnutls/gnutls@3.6.14-r0
  Fixed in: 3.6.15-r1

✗ Critical severity vulnerability found in gnutls/gnutls
  Description: Use After Free
  Info: https://snyk.io/vuln/SNYK-ALPINE312-GNUTLS-1088979
  Introduced through: meta-common-packages@meta
  From: meta-common-packages@meta > gnutls/gnutls@3.6.14-r0
  Fixed in: 3.6.15-r1

✗ Critical severity vulnerability found in apk-tools/apk-tools
  Description: Out-of-bounds Read
  Info: https://snyk.io/vuln/SNYK-ALPINE312-APKTOOLS-1533753
  Introduced through: apk-tools/apk-tools@2.10.5-r1
  From: apk-tools/apk-tools@2.10.5-r1
  Fixed in: 2.10.7-r0

Package manager:   apk
Project name:      docker-image|dperson/samba
Docker image:      dperson/samba:latest
Platform:          linux/amd64
Base image:        alpine:3.12.0

Tested 63 dependencies for known vulnerabilities, found 48 vulnerabilities.

Base Image     Vulnerabilities  Severity
alpine:3.12.0  22               2 critical, 14 high, 5 medium, 1 low

Recommendations for base image upgrade:

Minor upgrades
Base Image   Vulnerabilities  Severity
alpine:3.14  0                0 critical, 0 high, 0 medium, 0 low
Erriez commented 2 years ago

@dperson Thanks for creating this project. Can you review MR #397 with update from alpine:3.12 to alpine:3.15, rebuild, test and push the updated images to DockerHub?