Alexander Veit created SOLR-17755:
-------------------------------------
Summary: Official Docker Images with a horrible number of security
vulnerabilities
Key: SOLR-17755
URL: https://issues.apache.org/jira/browse/SOLR-17755
Project: Solr
Issue Type: Bug
Components: Docker
Affects Versions: 9.8.1
Reporter: Alexander Veit
Attachments: image-2025-05-07-19-43-18-313.png
The official Solr container image adds 73 security vulnerabilities, four of
them with critical, and 37 of them with high severity, to the base image. These
vulnerabilities show up not only on DockerHub but also in corporate security
scans. According to Docker Scout these vulnerabilities could be fixed, so they
probably should be fixed.
!image-2025-05-07-19-43-18-313.png!
https://hub.docker.com/layers/library/solr/9.8.1/images/sha256-2b79aecf860291dc257460e934e275af9bb79fda1991a2c6072535d18a63f07a
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org
For additional commands, e-mail: issues-h...@solr.apache.org
