-
Hi..., I build an application based on the image 'mcr.microsoft.com/dotnet/aspnet:8.0'. When I shipped it to the company who hosts this container, they scanned the image with a 'High' vulnerability. In the image of Microsoft 'mcr.microsoft.com/dotnet/aspnet:8.0' is a high vulnerability. The image is based on a Debian Bookworm distribution. The vulnerability is in the 'systemd', version: 252.22-1~deb12u1 There is a fix of this package in version: 255.4-1 Is there a fix coming soon? Or is there a way how I can fix this myself? What I've tried and did not help or solved the vulnerability:
Thanks in advance for you help. Jeffrey |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 4 replies
-
.NET relies on the Linux distro maintainers to update their packages. The fixed package version is not yet available for Bookworm, as indicated in CVE-2023-50387: We can make no recommendation of other solutions. As I mentioned, we rely on the distro maintainers here as they have a process to ensure correctness and compatibility when integrating new package versions into each distro version. You may want to explore other distros we provide like Alpine or our Ubuntu Chiseled images which have a lower attack surface due to their smaller set of packages installed. |
Beta Was this translation helpful? Give feedback.
-
You can install |
Beta Was this translation helpful? Give feedback.
.NET relies on the Linux distro maintainers to update their packages. The fixed package version is not yet available for Bookworm, as indicated in CVE-2023-50387:
We can make no recommendation of other solutions. As I mentioned, we rely on the distro maintainers here as they have a process to ensure correctness and compatibility when integrating new package versions into each distro version.
You may want to explore other distros we provide like Alpine or our Ubuntu Chiseled images which have a lower attack surface due to their smaller set of packages installed.