Debian docker image bugs

I am using clair to scan my docker images and I see that there are a lot of High priority bugs flagged for my image python:2.7-stretch which is based off Debian:stretch. Now most of these are fixed in a newer version of stretch (called stretch security). But I do not see a corresponding debian:stretch-security version released in dockerhub. Is there a way to fix these bugs or should one wait for debian to fix them in their base images?

Solution

The solution is to do an 'apt upgrade' inside the container which will pull in the updated packages and any CVE bugs which have a fix available should get updated. This will then leave my image with only bugs for which no fix has been released.

docker --device works with absolute device path, fails with symlink
Replacing character in dockerfile variable - error: missing ':' in substitution
MongooseError: Operation `clientusers.findOne()` buffering timed out after 10000ms
Connect application to database when they are in separate docker containers
Docker NLTK Download
COPY with docker but with exclusion
VMware Photon - Clair cannot scan Photon container vulnerability on vSphere
How can I delete all local Docker images?
File is not found in docker
Getting real client IP Address instead of Nginx Container's IP Address on Dockerized Next.js and Nestjs app | X-Forwarded-For
Error: " The command could not be loaded, possibly because:" while trying to start a selenium docker container
Dynamically get a running container name created by docker-compose
How to connect from VSCode to a mysql docker container?
Docker gets error "failed to compute cache key: not found" - runs fine in Visual Studio
Docker login failing (at most 1 argument)
Docker and playwright
How do I use Docker environment variable in ENTRYPOINT array?
Docker Desktop - WSL update failed
Problem with creating server in pgadmin 4, unable to connect to server
How to properly configure label-studio to use redis as a data source (in a docker)
Unauthenticated requests do not have permission "artifactregistry.repositories.uploadArtifacts"
Check architecture in dockerfile to get amd/arm
Sudden I/O errors with docker-compose
How do I tell buildroot to include boost in the host toolchain
Error starting mariaDB on docker-compose build
Nginx Reverse proxy to Sonarqube not working. Getting 500 error
Docker create image with all installed applications
How to start Docker container only after another container is exited
Get docker-compose.yml file location from running container?
Run OpenSearch image in Docker on GitHub Actions