Is there a fix on the CVE‑2018‑20225 for Python?

kscolina · April 1, 2026, 12:18pm

Update on the CVE‑2018‑20225

I am trying to use Python Base image versions 3.12.12-alpine3.22 and 3.13.12-alpine3.22. After our internal CVE scans, these are the reported CVEs that are common between the 2:
CVE‑2018‑20225
CVE‑2026‑27171
CVE‑2026‑1703

Do we have any update on the fix for CVE‑2018‑20225? It seems like this is way back 2018 and hasn’t resolved.

Last push to these images were made by doijanky.

If you can help me, I really appreciate it.

rimelek · April 1, 2026, 4:07pm

I don’t know, but you could try asking here

Or you could also check if the hardened version is compatible with your workflows

https://hub.docker.com/hardened-images/catalog/dhi/python

Since that has fewer packages installed by default, it has only 1 medium vulnerability at the moment. Of course if you have to install other packages on top of the base image, that might introduce new vulnerabilities

Topic		Replies	Views
Docker Desktop shows image has a python wheel vulnerability even though it has been updated General	3	2801	May 15, 2023
Scan reports many vulnerabilities in official images on docker hub General	6	2190	March 10, 2023
CVE-2022-2068 on python:3.9-slim-buster image General docker	1	1353	January 4, 2023
Recent python:3.10-alpine image push cause some compiler broken Docker Hub docker , build-image	1	872	December 20, 2023
Critical vulnerabilites were found on my docker General	1	156	June 13, 2024

Is there a fix on the CVE‑2018‑20225 for Python?

Related topics