Fedora and Centos don’t come with access to a CVE database. This leaves RHEL which requires a paid subscription to use.

If you have a paid subscription and are already going down the RHEL -> OpenShift -> Project Atomic route anyway then this is a good container to use. RHEL Atomic is 31mb compressed and 78.4mb on disk.

For those wanting to create a small Centos base image and don’t mind the lack of a CVE database you can use Buildah to create a minimal Centos 7 image that’s just 23mb compressed.

For those without a RHEL subscription I’d avoid Redhat base images entirely. Both Ubuntu and Debian now provide minimal base images that are small and come with a CVE database that ensures you can scan for vulnerabilities and get regular security patches.

Read our comparison blog to see how Redhat compares to the others.

Related

Scratch

If you’re using a statically compiled language to build your applications… 

  • 3.7K

Debian

Debian is a Linux distribution that’s composed entirely of free and… 

  • 3.8K

Amazon Linux

Amazon Linux 2 is available on Docker Hub. It’s based on Centos 7 and has… 

  • 3.7K

Tell us about a new Kubernetes application

Newsletter

Never miss a thing! Sign up for our newsletter to stay updated.

About

Discover and learn about everything Kubernetes

Navigation
Follow

Submit