How to fix vulnerability: CVE-2019-19816

Question

How to fix vulnerability: CVE-2019-19816

jovana opened this issue 4 years ago · comments

Joël van Amerongen commented 4 years ago

Hey, In this image: https://hub.docker.com/r/tiangolo/uvicorn-gunicorn-fastapi/tags?page=1&ordering=last_updated there are two Vulnerabilities:

For this one is already a fix (patch):
https://security-tracker.debian.org/tracker/CVE-2019-19816
Is there a way to solve this vulnerability, apt update & apt upgrade does not solve this?

The other is still not solved, so this is only for your information:
https://security-tracker.debian.org/tracker/CVE-2019-19814

Update:
One note, according to the Ubuntu team this is a low priority issue:
https://ubuntu.com/security/CVE-2019-19816
This because it has been fixed in Ubuntu 20.x.

Sebastián Ramírez · Answer 1 · Thu Nov 10 2022 04:24:24 GMT+0800 (China Standard Time)

Hey there, that would be for an old version of this image, right? I suspect that's already solved... 🤔

Sorry for the long delay! 🙈 I wanted to personally address each issue/PR and they piled up through time, but now I'm checking each one in order.

github-actions · Answer 2 · Sun Nov 20 2022 08:28:19 GMT+0800 (China Standard Time)

Assuming the original issue was solved, it will be automatically closed now. But feel free to add more comments or create new issues.