CVE-2015-4042
This is being flagged as a security issue by Jfrog Xray for Alpine 3.12. The fix appears never to have been merged.
https://github.com/pixelb/coreutils/commit/bea5e36cc876ed627bb5e0eca36fdfaa6465e940
Integer overflow in the keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 might allow attackers to cause a denial of service (application crash) or possibly have unspecified other impact via long strings
Infected File: 3.12:coreutils:8.32-r0
Fix: CVE-2015-4042 - Alpine discussions from 2015 state that this is not affecting the branch alpine uses, and there will no fix for this particular vulnerability in alpine 3.7 ++