ubuntu-docker-images team mailing list archive

Thread
Date

Re: Fwd: cassandra contains outdated Ubuntu packages

To: Emilia Torino <emilia.torino@xxxxxxxxxxxxx>
From: Athos Ribeiro <athos.ribeiro@xxxxxxxxxxxxx>
Date: Mon, 14 Feb 2022 10:16:51 -0300
Cc: ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
In-reply-to: <CABYK4iyVh=15OsSyugf4sYL4wBEkYzCj5jmR+cs9zd-L462VKA@mail.gmail.com>

Thanks for forwarding this one, Emilia!

I will re-build and re-tag this one.

On Mon, Feb 14, 2022 at 10:01:03AM -0300, Emilia Torino wrote:

---------- Forwarded message ---------
From: <security-team-toolbox-bot@xxxxxxxxxxxxx>
Date: Thu, Feb 10, 2022 at 2:09 AM
Subject: cassandra contains outdated Ubuntu packages
To: <ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx>, <
sergio.durigan@xxxxxxxxxxxxx>


A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:

Revision r1421fd0f6446 (s390x; channels: 4.0-20.04_beta, 4.0-20.04_edge)
* bsdutils: 5279-1
* fdisk: 5279-1
* libblkid1: 5279-1
* libfdisk1: 5279-1
* libmount1: 5279-1
* libsmartcols1: 5279-1
* libuuid1: 5279-1
* mount: 5279-1
* util-linux: 5279-1

Revision r2747d160aa30 (amd64; channels: 4.0-20.04_beta, 4.0-20.04_edge)
* bsdutils: 5279-1
* fdisk: 5279-1
* libblkid1: 5279-1
* libfdisk1: 5279-1
* libmount1: 5279-1
* libsmartcols1: 5279-1
* libuuid1: 5279-1
* mount: 5279-1
* util-linux: 5279-1

Revision r385cc7efb20c (amd64; channels: latest, 4.0-21.10_edge, edge,
4.0-21.10_beta)
* bsdutils: 5279-1
* libblkid1: 5279-1
* libmount1: 5279-1
* libsmartcols1: 5279-1
* libuuid1: 5279-1
* mount: 5279-1
* util-linux: 5279-1

Revision r3b670e1c730c (ppc64le; channels: latest, 4.0-21.10_edge, edge,
4.0-21.10_beta)
* bsdutils: 5279-1
* libblkid1: 5279-1
* libmount1: 5279-1
* libsmartcols1: 5279-1
* libuuid1: 5279-1
* mount: 5279-1
* util-linux: 5279-1

Revision r4558a4c3cf73 (ppc64le; channels: 4.0-20.04_beta, 4.0-20.04_edge)
* bsdutils: 5279-1
* fdisk: 5279-1
* libblkid1: 5279-1
* libfdisk1: 5279-1
* libmount1: 5279-1
* libsmartcols1: 5279-1
* libuuid1: 5279-1
* mount: 5279-1
* util-linux: 5279-1

Revision r98abb6efb958 (arm64; channels: 4.0-20.04_beta, 4.0-20.04_edge)
* bsdutils: 5279-1
* fdisk: 5279-1
* libblkid1: 5279-1
* libfdisk1: 5279-1
* libmount1: 5279-1
* libsmartcols1: 5279-1
* libuuid1: 5279-1
* mount: 5279-1
* util-linux: 5279-1

Revision rc3a23db08f53 (arm64; channels: latest, 4.0-21.10_edge, edge,
4.0-21.10_beta)
* bsdutils: 5279-1
* libblkid1: 5279-1
* libmount1: 5279-1
* libsmartcols1: 5279-1
* libuuid1: 5279-1
* mount: 5279-1
* util-linux: 5279-1

Revision re9508cc1505d (s390x; channels: latest, 4.0-21.10_edge, edge,
4.0-21.10_beta)
* bsdutils: 5279-1
* libblkid1: 5279-1
* libmount1: 5279-1
* libsmartcols1: 5279-1
* libuuid1: 5279-1
* mount: 5279-1
* util-linux: 5279-1

Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.

Thank you for your rock and for attending to this matter.

References:
* https://ubuntu.com/security/notices/USN-5279-1/

--
Mailing list: https://launchpad.net/~ubuntu-docker-images
Post to     : ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
Unsubscribe : https://launchpad.net/~ubuntu-docker-images
More help   : https://help.launchpad.net/ListHelp



--
Athos Ribeiro

References

Fwd: cassandra contains outdated Ubuntu packages
From: Emilia Torino, 2022-02-14