Skip to content

Commit

Permalink
Bump base image (#1470)
Browse files Browse the repository at this point in the history 
This fixes:
│    Library     │ Vulnerability  │ Severity │ Status │ Installed Version │ Fixed Version  │                            Title                             │
├────────────────┼────────────────┼──────────┼────────┼───────────────────┼────────────────┼──────────────────────────────────────────────────────────────┤
│ linux-libc-dev │ CVE-2024-26800 │ HIGH     │ fixed  │ 5.15.0-124.134    │ 5.15.0-125.135 │ kernel: tls: fix use-after-free on failed backlog decryption │
│                │                │          │        │                   │                │ https://avd.aquasec.com/nvd/cve-2024-26800                   │
│                ├────────────────┤          │        │                   │                ├──────────────────────────────────────────────────────────────┤
│                │ CVE-2024-43882 │          │        │                   │                │ kernel: exec: Fix ToCToU between perm check and set-uid/gid  │
│                │                │          │        │                   │                │ usage                                                        │
│                │                │          │        │                   │                │ https://avd.aquasec.com/nvd/cve-2024-43882
  • Loading branch information
@kylos101
kylos101 authored Dec 2, 2024
1 parent 3feb45e commit da8ccef
Showing 1 changed file with 27 additions and 27 deletions.
54 changes: 27 additions & 27 deletions base/Dockerfile
View file
Original file line number Diff line number Diff line change
@@ -1,39 +1,39 @@
FROM buildpack-deps:jammy@sha256:9c6387be70924dc253a6c5594fd11bf8c90a19528442ee8b0b4040362bf1a662

# Dazzle does not rebuild a layer until one of its lines are changed. Increase this counter to rebuild this layer.
ENV TRIGGER_REBUILD=1
ENV TRIGGER_REBUILD=2

COPY install-packages upgrade-packages /usr/bin/

### base ###
RUN yes | unminimize \
&& install-packages \
zip \
unzip \
bash-completion \
build-essential \
ninja-build \
clang \
htop \
iputils-ping \
jq \
less \
locales \
man-db \
nano \
ripgrep \
software-properties-common \
sudo \
stow \
time \
emacs-nox \
vim \
multitail \
lsof \
ssl-cert \
fish \
zsh \
rlwrap \
zip \
unzip \
bash-completion \
build-essential \
ninja-build \
clang \
htop \
iputils-ping \
jq \
less \
locales \
man-db \
nano \
ripgrep \
software-properties-common \
sudo \
stow \
time \
emacs-nox \
vim \
multitail \
lsof \
ssl-cert \
fish \
zsh \
rlwrap \
&& locale-gen en_US.UTF-8

ENV LANG=en_US.UTF-8
Expand Down

0 comments on commit da8ccef

Please sign in to comment.