I always get the security-tracker.debian.org/tracker/CVE-2015-20107 error, even if i just have this commands for docker file is there a way to fix this.
FROM debian:stable
RUN apt-get update && apt-get install -y --no-install-recommends \
python3.10 \
python3-pip
CodePudding user response:
The link you've shown also informs you that the vulnerable package is fixed in python 3.10.7
, which is available in debian sid. Either switch your docker image to sid, or just ignore the warning and make sure any application you are running is not using the affected module.