Most of these vulnerabilities won't matter to most users. Privilege escalation, inside a docker container (mostly) doesn't go very far, and developers should avoid providing code execution to users in the first place.
With docker, you will attempt a defense in depth. Even if someone breaks into an app in a container, it can be very hard to break into other containers or the host.
I suspect that many, maybe most developers have lower hanging fruits on the security tree than upgrading deployed docker containers daily.
The removal of a vulnerability which can't be used as a link in the "kill chain" of a hacker attacking your system isn't improving security that much.
With docker, you will attempt a defense in depth. Even if someone breaks into an app in a container, it can be very hard to break into other containers or the host.
I suspect that many, maybe most developers have lower hanging fruits on the security tree than upgrading deployed docker containers daily.
The removal of a vulnerability which can't be used as a link in the "kill chain" of a hacker attacking your system isn't improving security that much.