traefik-fips-2.11
Chainguard
5.2
CVSS V3
Status
Impact
We are unable to upgrade the Docker dependency in our Traefik package to v28.0.0 to fix the CVE,
as it introduces breaking API changes. Docker v28.0.0 removes several types and fields—such as ContainerNode
, NetworkListOptions
, and EventsOptions
that Traefik’s Docker provider still relies on. These removals cause multiple compilation errors across several files in Traefik’s codebase.
The highest version we can upgrade to without breaking the build is Docker v27.5.1, which unfortunately does not address the CVE. As a result,
this issue cannot be resolved without upstream changes in Traefik to support the newer Docker API.
Status