Closed jmthomas closed 1 year ago
Looks good, thanks!
I'll also quote https://github.com/docker-library/redis/issues/328#issuecomment-1409223155 here to be explict/clear:
There are no CVEs actually fixed by upgrading
gosu
to 1.16, but it does allowgovulncheck
to scan the binary correctly so that CVEs can be reported more correctly in the future.
I believe this addresses a number of CVEs that are related to the old version of gosu. See https://github.com/tianon/gosu/releases.