ubuntu-docker-images team mailing list archive

Thread
Date

USNs still not fixed for ROCKs

To: Athos Ribeiro <athos.ribeiro@xxxxxxxxxxxxx>, Sergio Durigan Junior <sergio.durigan@xxxxxxxxxxxxx>, ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
From: Emilia Torino <emilia.torino@xxxxxxxxxxxxx>
Date: Thu, 16 Dec 2021 12:46:50 -0300
Cc: Alex Burrage <alex.burrage@xxxxxxxxxxxxx>

Hey!

I was double checking the ROCKs USN notification service due to the
critical log4j vulnerability announced yesterday (which I see none rock was
affected), but I noticed that there are some rocks that have not been fixed
yet for some older vulnerabilities, which are mysql and nginx:

{
  "mysql": {
    "a5455538074c": [
      "5022-1",
      "5123-1"
    ]
  },
  "nginx": {
    "206059394bea": [
      "5156-1"
    ],
    "4d10f2f33c30": [
      "5156-1"
    ],
    "62d6e123fe9c": [
      "5156-1"
    ],
    "6703a4156f95": [
      "5156-1"
    ],
    "7d650f7d4e49": [
      "5156-1"
    ],
    "c788f838de31": [
      "5156-1"
    ],
    "ee23afc91fac": [
      "5156-1"
    ],
    "fcf9050fd361": [
      "5156-1"
    ]
  }
}

I will fw again the email communications sent just in case were missed due
to this email issue we are still having. Could you please make sure those
issues are addressed?

Thanks!!!

Follow ups

Re: USNs still not fixed for ROCKs
From: Athos Ribeiro, 2021-12-17
Re: USNs still not fixed for ROCKs
From: Athos Ribeiro, 2021-12-17