yosifkit
yosifkit
Closing since this is not something we can reasonably add to the images (see @tianon's [comment](https://github.com/docker-library/python/pull/883#issuecomment-1834698677)). Users can add the symlinks in their own dependent image or run their python...
There isn't a fix available in Alpine 3.19, so there is nothing we can do: https://security.alpinelinux.org/vuln/CVE-2023-42366
We didn't change any build flags or anything else (except likely some OS package updates from a rebuild) between `3.11.8` and `3.11.9`, so if there is an issue, it would...
If `-bullseye` works and `-bookworm` does not, that sounds like `libseccomp`: https://github.com/docker-library/python/issues/837#issuecomment-1599640563 and more generally, https://github.com/docker-library/official-images/issues/16829
@martin-thoma, it is the libseccomp (and docker and containerd) of the host that you need to update, not anything in the container.
Background: >Tags in the [official-images] library file[s] are only built through an update to that library file or as a result of its base image being updated (ie, an image...
Closing because the `2.7` image is not supported. Python 2.7 has been "end of life" since Jan 2020.
Closing since this is the nature of `cassandra` (and java-based applications) and there is a sufficient workaround: set hard limits (e.g. `--memory` or `memory:`) higher than the flags given to...
Basically every CVE scanner that I've seen uses inaccurate string matching and doesn't account for execution path. I.E., just because a binary uses a library, doesn't mean it uses the...
```console $ docker run ubuntu:noble -it /bin/bash # inside the container $ apt update && apt install gosu $ gosu --version 1.17 (go1.21.3 on linux/arm64; gc) ``` @jumarko, that looks...