SAST Vulnerabilities found on packages #1188
Description
We are using the latest image from Docker supertokens/supertokens-postgresql:11.0.6 and the following vulnerabilities were found in our SAST scan.
Can you fix these?
Container Scan Summary
| Title | Severity | Fix Available | Fixed Version | Details | File path |
|---|---|---|---|---|---|
| CVE-2025-6965 - sqlite3 | CRITICAL | YES | 0:3.40.1-2+deb12u2 | link | None |
| CVE-2025-4802 - glibc | HIGH | YES | 0:2.36-9+deb12u11 | link | None |
| CVE-2023-31484 - perl | HIGH | YES | 0:5.36.0-7+deb12u3 | link | None |
| CVE-2025-48989 - org.apache.tomcat.embed:tomcat-embed-core | HIGH | YES | 11.0.10 | link | /usr/lib/supertokens/core/tomcat-embed-core-11.0.8.jar |
Thanks in advance.