关docker hub上有些镜像的tag被标记““This image has vulnerabilities””

Question

比如说tomcat的官方镜像

https://hub.docker.com/r/library/tomcat/tags/

这是是几个意思？不安全，有漏洞吗？

直接使用的话是否会容易被攻击？

Answer 1

Yes, images marked as such are considered to have vulnerabilities. These vulnerabilities usually come from the software and dependent libraries included in the system or upper-layer image on which they are based. Of course, it may also be a problem with the software itself.
This tip only means that the environment in which the image is based is vulnerable, but it does not mean that the vulnerability will definitely be attacked.
You can choose to use its Dockerflie to rebuild the image, update the vulnerable software, or protect the vulnerability at the firewall level.