If you find a security vulnerability that directly affects the Docker NGINX Unprivileged image we encourage you open an issue detailing the security vulnerability. Do note that only vulnerabilities related to direct NGINX library dependencies will be considered. Other security vulnerabilities should be addressed by the weekly Monday night build and as such will be promptly closed. For reference, the direct NGINX library dependencies are:
-
For Debian:
libc6libcrypt1libpcre2libsslzlib1g
-
For Alpine Linux:
libclibcryptolibpcre2libssllibz