Security vulnerability in v0.5.40-22
Closed this issue · 4 comments
dc588 commented
Container security scan tool is reporting the following HIGH vulnerabilities
CVE-2022-23960
CVE-2022-42703
CVE-2022-42896
CVE-2022-43945
These CVE's correspond to linux-libc-dev packages on Ubuntu 22.04 base image. We did observe that this package was updated to latest version when we did an apt-get update within the container. Hopefully this will resolve the issue. Can you please recommend corrective actions to get past this security vulerability.
josegonzalez commented
Yeah I can get this rebuilt later today. Thanks for reporting.
cyrillef commented
and now
josegonzalez commented
Okay I think I re-released the stacks properly now. Mind checking if everything works as expected?
josegonzalez commented
Okay everything has been rebuilt so if there is a CVE still, not sure rebuilding will fix it.