Crtitical/high vulnerabilities in all haproxy:bullseye images

[anajovanoviic]

Crtitical/high vulnerabilities are in all haproxy:bullseye images. Could you patch this?

One of the tags - https://hub.docker.com/layers/library/haproxy/lts-bullseye/images/sha256-5e2b156122dd34992ddd73026eb4cd57cbadbed5c30bdc704d0465986e0f8023?context=explore

Critical vulnerability (CVE-2023-45853) - https://dso.docker.com/images/debian/digests/sha256:b6d63c0260d528ebfd7c6e50d76ba7c9ff15698700a63e1f6b681876fffa6ff9?_gl=1*iop9d6*_ga*MTI2MjMxNTU4Ny4xNjkwNDI1ODQ3*_ga_XJWPQMJYHQ*MTY5OTAxNjg3My4xOC4xLjE2OTkwMTc5MTkuMzkuMC4w

[LaurentGoderre]

This vulnerability comes from Debian and Debian hasn't fixed it yet:

https://security-tracker.debian.org/tracker/CVE-2023-45853

We will partch as soon as upstream does.

[anajovanoviic]

ok, thanks

[tianon]

See also https://github.com/docker-library/faq#why-does-my-security-scanner-show-that-an-image-has-cves