Skip to content

Commit

Permalink
fix: kubernetes/nginx/Dockerfile to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN12-AOM-7197979
- https://snyk.io/vuln/SNYK-DEBIAN12-EXPAT-7855502
- https://snyk.io/vuln/SNYK-DEBIAN12-EXPAT-7855503
- https://snyk.io/vuln/SNYK-DEBIAN12-EXPAT-7855507
- https://snyk.io/vuln/SNYK-DEBIAN12-CURL-7575306
  • Loading branch information
@snyk-bot
snyk-bot committed Sep 7, 2024
1 parent 99e5cae commit 2e556fc
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion kubernetes/nginx/Dockerfile
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
FROM nginx:1.27.0
FROM nginx:1.27.1

Check failure

Code scanning / Snyk Container

Critical severity - Cleartext Transmission of Sensitive Information vulnerability in curl Critical

This file introduces a vulnerable curl package with a critical severity vulnerability.

Check failure

Code scanning / Snyk Container

Critical severity - Out-of-bounds Write vulnerability in curl Critical

This file introduces a vulnerable curl package with a critical severity vulnerability.

Check failure

Code scanning / Snyk Container

Critical severity - Integer Overflow or Wraparound vulnerability in expat Critical

This file introduces a vulnerable expat package with a critical severity vulnerability.

Check failure

Code scanning / Snyk Container

Critical severity - Integer Overflow or Wraparound vulnerability in expat Critical

This file introduces a vulnerable expat package with a critical severity vulnerability.

Check failure

Code scanning / Snyk Container

Critical severity - XML External Entity (XXE) Injection vulnerability in expat Critical

This file introduces a vulnerable expat package with a critical severity vulnerability.

Check failure

Code scanning / Snyk Container

Critical severity - CVE-2024-37371 vulnerability in krb5 Critical

This file introduces a vulnerable krb5 package with a critical severity vulnerability.

Check failure

Code scanning / Snyk Container

Critical severity - Integer Overflow or Wraparound vulnerability in zlib Critical

This file introduces a vulnerable zlib package with a critical severity vulnerability.
ENV TZ Asia/Tokyo
ARG BUILD_DATE
ARG VCS_REF
Expand Down

0 comments on commit 2e556fc

Please sign in to comment.