Hi,
Am Dienstag, 17. Oktober 2023, 10:03:02 CEST schrieb Dor Hayun:
> You are correct, but we simply need to understand whether it is vulnerable
> or not. Why does it only appear for these branches and not below?
as stated, Alpine 3.8 has had end-of-life on May 1st, *2020* [1], the CVE is
from *2022*
If you're really interested whether the CVE applies for a version having end-
of-any-support *two years before the bug was even discovered*, I'm afraid
you're on your own or need to pay someone to do the research.
[1] https://endoflife.date/alpine
--
MfG Jan