Debian-based Cloud SDK images use vulnerable zlib1g library (CVE-2023-45853)

[ksoftirqd]

The Debian-based images for the Google Cloud SDK are currently using a vulnerable version of the zlib1g library (1:1.2.13.dfsg-1), which is affected by CVE-2023-45853.

Image versions:

• latest/5a77b9f8fc71
• stable/6d971c21fa2d

[anindyatahsin]

There is no fix available for this CVE as of now. Once a fix will be available on the latest debian image our docker images will automatically pick up the fixed version.