Docker Community Forums

Share and learn in the Docker community.

Official containers and security CVE issues

Quite a few of the official docker containers (tomcat, jetty, for example) are flagged as having known security vulnerabilities.

What are folks doing to mitigate these issues?

Are there any plans to address these CVEs in the official containers in a more timely fashion?