Researching what versions of Docker have committed timeline or support from community for providing patches to resolve CVEs. For example, the Openstack community provides patches for current plus two previous versions while Kubernetes only provides for current version.
The posted list of CVEs are here: https://www.docker.com/legal/docker-cve-database. If a new CVE is discovered tomorrow, will remediations be back ported to previous versions and if so, what versions. Are there LTS versions?
Trying to get details for compliance purposes so any info is appreciated.