Reputation: 31
Docker - centos:7 kernel-header 3.10.0 vulnerabilities -> what to do?
My client uses a Docker images that has a base image of centos:7 from DockerHub. I noticed that Google Cloud Container registry flagged my latest built images with 17 vulnerabilities that all target the kernel-headers package from CentOs, version 3.10.0.
What are my options ?
Can I just upgrade this package or the kernel while staying on CentOs 7 or do I need to upgrade to version 8 ? With an upgrade to version 8, are there specific breaking updates I should keep an eye on ?
Thank you guys
Update : We are using hdf5, hdf5-devel, devtoolset-7-gcc-c++ and openmpi packages to run some simulations. Removing the kernel-headers tries to remove devtoolset-7-gcc, glibc-devel and glibc-headers packages. I will do some testing without those packages.
Upvotes: 2
Views: 899
Answers (1)
Related Questions
- How do I remediate a critical vulnerability in my Docker image?
- Latest docker (containerd) updates break everything and all container stopped
- Fixing security vulnerabilities in docker image
- CVE-2021-26691 on php:7.4-apache docker
- what is the workaround for the kernel too old error in docker on centos
- Docker daemon fails to start after updating
- Should I modify the kernel inside docker or in my host to correct "netdata warning"?
- Docker minimum kernel version 3.8.13 or 3.10
- How can I deal with security updates in my docker containers?
- Why patch linux kernel on Centos for using Docker.io