Skip to content

Commit 12f3958

Browse files
swibi-ttdswibi-ttd
committed
use latest image and upgrade libraries to try fix more vulnerabilities
1 parent f108493 commit 12f3958

1 file changed

Lines changed: 4 additions & 3 deletions

File tree

Dockerfile

Lines changed: 4 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,4 @@
1-
# sha from https://hub.docker.com/layers/library/eclipse-temurin/21-jre-alpine-3.23/images/sha256-693c22ea458d62395bac47a2da405d0d18c77b205211ceec4846a550a37684b6
2-
FROM eclipse-temurin@sha256:89517925fa675c6c4b770bee7c44d38a7763212741b0d6fca5a5103caab21a97
1+
FROM eclipse-temurin:21-jdk-alpine
32
# For Amazon Corretto Crypto Provider
43
RUN apk add --no-cache gcompat
54

@@ -23,7 +22,9 @@ COPY ./conf/*.xml /app/conf/
2322
RUN tar xzvf /app/static.tar.gz --no-same-owner --no-same-permissions && rm -f /app/static.tar.gz
2423

2524
# Fix CVE-2025-68973: Update gnupg to patched version
26-
RUN apk update && apk upgrade gnupg && rm -rf /var/cache/apk/*
25+
# Fix CVE-2026-1584: Update gnutls to patched version
26+
# Fix CVE-2026-25646: Update libpng to patched version
27+
RUN apk update && apk upgrade gnupg gnutls libpng && rm -rf /var/cache/apk/*
2728

2829
RUN adduser -D uid2-operator && mkdir -p /opt/uid2 && chmod 777 -R /opt/uid2 && mkdir -p /app && chmod 705 -R /app && mkdir -p /app/file-uploads && chmod 777 -R /app/file-uploads && mkdir -p /app/pod_terminating && chmod 777 -R /app/pod_terminating
2930
USER uid2-operator

0 commit comments

Comments
 (0)