search

redis / docker-library-redis

Docker Official Image packaging for Redis
http://redis.io
BSD 3-Clause "New" or "Revised" License
1.12k stars 563 forks source link

Vulnerable Packages in Latest Redis Docker Image #331

Closed anksvault closed 1 year ago

anksvault commented 1 year ago

During our local Image scan, following vulnerable packages are present in the latest Redis Docker image.

CVE-2022-29162 CVE-2021-43784

I would like to understand how can I address these or is there a future release addressing these with available patches?

wglambert commented 1 year ago

The security scanner is detecting those from gosu, see https://github.com/tianon/gosu/issues/104

Duplicate of https://github.com/docker-library/redis/issues/328