Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

openjdk:8 vulnerabilities #517

Closed
pawank0411 opened this issue Oct 21, 2022 · 1 comment
Closed

openjdk:8 vulnerabilities #517

pawank0411 opened this issue Oct 21, 2022 · 1 comment

Comments

@pawank0411
Copy link

pawank0411 commented Oct 21, 2022
edited
Loading

There are multiple open vulnerabilities reported for the application which uses the openjdk:8 docker image based on Debian.

A few of them are :

CVE-2018-25032
CVE-2019-20367
CVE-2020-24659
CVE-2020-35525
CVE-2020-35527
CVE-2020-8169
CVE-2020-8177
CVE-2020-8285
...

Can you please provide an alternative stable image for jdk8 that we can use in order to avoid these vulnerabilities or let us know if these are FP?
@wglambert
Copy link

See https://github.com/docker-library/docs/tree/master/openjdk

This image is officially deprecated and all users are recommended to find and use suitable replacements ASAP. Some examples of other Official Image alternatives (listed in alphabetical order with no intentional or implied preference):

amazoncorretto
eclipse-temurin
ibm-semeru-runtimes
ibmjava
sapmachine
See #505 for more information.

@tianon tianon closed this as completed Oct 21, 2022
@yosifkit yosifkit mentioned this issue Sep 26, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@tianon @wglambert @pawank0411