Grype detects a critical vulnerability in python:3.13.3-alpine

Hello

We're using python:3.13.3-alpine3.20 as base of one our images and we use Gyrpe v0.87.0 to do scan of our container. Since today it is dectecting the following vulnerabilities:

![Image](https://github.com/user-attachments/assets/157bd3ee-f203-40e4-b842-4c1ab9a36b08)

As you can see it detects a critical one for sqlite-libs 3.45.3-r1

I also tried with alpine 3.21 and it's the same: 
![Image](https://github.com/user-attachments/assets/91c0b1c4-6f73-4ad5-8b70-fceecef62cb7)

I checked the docker-hub tag information: [python:3.13.3-alpine3.20](https://hub.docker.com/layers/library/python/3.13.3-alpine3.20/images/sha256-b947c3b1b8f41c1d6fe9d061cda8f313b854536f3c28e98a6bcf7deaf79ef649) and [python:3.13.3-alpine3.21](https://hub.docker.com/layers/library/python/3.13.3-alpine3.21/images/sha256-9cd519d4391180e677911e112961ffa6ecba2f424ff9b7cd2ddd7227ad5db493) and in none does this vulnerability appear, maybe because the scanning tool is different.

Do you have prediction to fix this vulnerability?

Thank you
Joana 


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Grype detects a critical vulnerability in python:3.13.3-alpine #1029

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Grype detects a critical vulnerability in python:3.13.3-alpine #1029

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions