Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pen Test: Docker container patch management #195

Closed
apurvam opened this issue Dec 5, 2023 · 2 comments
Closed

Pen Test: Docker container patch management #195

apurvam opened this issue Dec 5, 2023 · 2 comments
Assignees
@rodesai
Labels
p0 Highest priority issue security For issues and pull requests that fix security issues

Comments

@apurvam
Copy link
Contributor

apurvam commented Dec 5, 2023

No description provided.

@apurvam apurvam added the security For issues and pull requests that fix security issues label Dec 5, 2023
@apurvam apurvam added the p0 Highest priority issue label Dec 5, 2023
@rodesai
Copy link
Contributor

rodesai commented Dec 14, 2023

#203 bumps the debian version to 12 and removes wget from the final image, which should address the vulnerabilities identified.

@rodesai rodesai closed this as completed Dec 14, 2023
@rodesai
Copy link
Contributor

rodesai commented Jan 19, 2024

We've bumped the image to 12.4, which should address almost all vulnerabilities. The only remaining non-low-risk one is:
https://security.snyk.io/vuln/SNYK-DEBIAN12-ZLIB-6008963

There is no patched version of zlib available, and we cannot uninstall zlib. We don't use MiniZip for anything, so we should not be at risk for this CVE.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rodesai rodesai

Labels
p0 Highest priority issue security For issues and pull requests that fix security issues
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@apurvam @rodesai