ubuntu-docker-images team mailing list archive

Thread
Date

Re: USNs still not fixed for ROCKs

To: Emilia Torino <emilia.torino@xxxxxxxxxxxxx>
From: Athos Ribeiro <athos.ribeiro@xxxxxxxxxxxxx>
Date: Fri, 17 Dec 2021 13:03:28 -0300
Cc: ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx, Alex Burrage <alex.burrage@xxxxxxxxxxxxx>
In-reply-to: <CABYK4iwdC7+P9rf4t8rBNUaVMR79D8fjbVXKz_KyU_-a9ULEbg@mail.gmail.com>

On Thu, Dec 16, 2021 at 12:46:50PM -0300, Emilia Torino wrote:

Hey!

I was double checking the ROCKs USN notification service due to the
critical log4j vulnerability announced yesterday (which I see none rock was
affected), but I noticed that there are some rocks that have not been fixed
yet for some older vulnerabilities, which are mysql and nginx:


nginx images rebuilt and tagged. This should be fixed now.

{
 "mysql": {
   "a5455538074c": [
     "5022-1",
     "5123-1"
   ]
 },
 "nginx": {
   "206059394bea": [
     "5156-1"
   ],
   "4d10f2f33c30": [
     "5156-1"
   ],
   "62d6e123fe9c": [
     "5156-1"
   ],
   "6703a4156f95": [
     "5156-1"
   ],
   "7d650f7d4e49": [
     "5156-1"
   ],
   "c788f838de31": [
     "5156-1"
   ],
   "ee23afc91fac": [
     "5156-1"
   ],
   "fcf9050fd361": [
     "5156-1"
   ]
 }
}

I will fw again the email communications sent just in case were missed due
to this email issue we are still having. Could you please make sure those
issues are addressed?

Thanks!!!


--
Athos Ribeiro

References

USNs still not fixed for ROCKs
From: Emilia Torino, 2021-12-16