please release an Alpine image with libssl 1.1.1g as per CVE-2020-1967

[czka]

https://www.openssl.org/news/secadv/20200421.txt

OpenSSL version 1.1.1d, 1.1.1e, and 1.1.1f are affected by this issue. This
issue did not affect OpenSSL versions prior to 1.1.1d.

Affected OpenSSL 1.1.1 users should upgrade to 1.1.1g

Available since yesterday: https://pkgs.alpinelinux.org/packages?name=libssl1.1&branch=v3.11.

[yosifkit]

We strive to publish updated images at least monthly for Debian and Ubuntu. We also rebuild earlier if there is a critical security need, e.g. docker-library/official-images#2171. Many Official Images are maintained by the community or their respective upstream projects, like Alpine and Oracle Linux, and are subject to their own maintenance schedule. These refreshed base images also means that any other image in the Official Images program that is FROM them will also be rebuilt (as described in the project README.md file).

- https://github.com/docker-library/faq/blob/master/README.md#why-does-my-security-scanner-show-that-an-image-has-cves

Since these packages are installed in the base Alpine image, it needs to be addressed in the base Alpine image. This would then naturally cause the haproxy alpine images to be rebuilt by the official-images build servers.