Should opam images be updated after the xz vulnerability?

Looking at the HN thread it seems that some debian and Ubuntu versions are affected by this fairly bad vulnerability on sshd. I wonder if there’s processes for a re-release/update of all the opam docker images?


The images are all rebuilt regularly from a build pipeline, so it’ll pick up all security updates within a couple of days. You can see the latest logs on for all distributions.