cloud-sdk-docker icon indicating copy to clipboard operation
cloud-sdk-docker copied to clipboard
verified publisher icon GoogleCloudPlatform

Debian-based Cloud SDK images use vulnerable zlib1g library (CVE-2023-45853)

Open ksoftirqd opened this issue 1 year ago • 1 comments

The Debian-based images for the Google Cloud SDK are currently using a vulnerable version of the zlib1g library (1:1.2.13.dfsg-1), which is affected by CVE-2023-45853.

Image versions:

  • latest/5a77b9f8fc71
  • stable/6d971c21fa2d

ksoftirqd avatar Dec 19 '24 19:12 ksoftirqd

There is no fix available for this CVE as of now. Once a fix will be available on the latest debian image our docker images will automatically pick up the fixed version.

CVE-2023-45853

anindyatahsin avatar Jan 02 '25 20:01 anindyatahsin