We have found this below list of CRITICAL Security vulnerabilties present in the official zookeper image -
| Vulnerability ID | Component | Infected versions | Fixed versions |
|---|---|---|---|
| CVE-2021-33574 | debian:bullseye:libc6:2.31-13+deb11u2 | N/A | N/A |
| XRAY-179837 | io.netty:netty-codec:4.1.59.Final | < 4.1.66.Final | 4.1.66.Final |
| CVE-2022-23307 | log4j:log4j:1.2.17 | All Versions | N/A |
| CVE-2019-17571 | log4j:log4j:1.2.17 | ≤ 1.2.17 | N/A |
| CVE-2022-23305 | log4j:log4j:1.2.17 | 1.1.0 ≤ Version ≤ 1.2.17 | N/A |
| CVE-2022-23219 | debian:bullseye:libc6:2.31-13+deb11u2 | N/A | N/A |
| CVE-2022-23218 | debian:bullseye:libc6:2.31-13+deb11u2 | N/A | N/A |
Can you please help us with the fix or update us on the release of security patches and also their respective timelines.