CVEβs-Tips
How We Mitigate CVEs in Modern Container Images (2025 Guide) CVE ID Component / Package Underlying OS Issue Summary Resolution Taken Resolved In Version Backported (OEL/OEL-like OS)? CVE-2024-3094 xz-utils (XZ backdoor) UBI 9.6 (RHEL-based) Malicious backdoor in liblzma affecting SSH authentication Updated base image to UBI 9.6 which already ships patched xz-utils. Rebuilt Keycloak image […]
