Docker Community Forums

Share and learn in the Docker community.

Docker vulnerability scan still shows Old libraries

Hi All,
Summary:
I pulled mssqlserver-linux image from docker hub and started the container.when performed container scan it resulted to big list of CVE’s related to OS base debian libraries.I thought of fixing some issues by logging to the container using command “docker exec -it container_id bash” and then running apt-get update && upgrade.I verified some libraries are updated to latest version in the container.i created a new image from the container using command “docker commit container_I’d” and started the container from new image.
After rescan i still see the same list of CVE’s.

Please suggest what I’m missing and what is the best way to update security patches to the docker base image.