Periodic Vulnerability Reports in java

Question

Periodic Vulnerability Reports in java

ShunichirouKamino opened this issue 5 months ago · comments

ShunichirouKamino commented 5 months ago

CVE disclosure
https://openjdk.org/groups/vulnerability/advisories/2024-01-16

Name of image
gcr.io/distroless/java17-debian11:latest

Link to updated package
For example, for Series 17, you need to upgrade from 17.0.9 to 17.0.10.
The current image was 17.0.9.

$ docker run --name distrolessjava17 -it gcr.io/distroless/java17-debian11:latest -version
openjdk version "17.0.9" 2023-10-17
OpenJDK Runtime Environment (build 17.0.9+9-Debian-1deb11u1)
OpenJDK 64-Bit Server VM (build 17.0.9+9-Debian-1deb11u1, mixed mode, sharing)