← Back to team overview

ubuntu-docker-images team mailing list archive

  1. ubuntu-docker-images team
  2. Mailing list archive
  3. Message #00213

nginx contains outdated Ubuntu packages

  Thread PreviousDate PreviousThread Next 
A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:

Revision r1e02cdc3957e (arm64; channels: edge, 1.18-22.04_beta, latest, 1.18-22.04_edge)
 * libnginx-mod-http-auth-pam: 5371-2
 * libnginx-mod-http-dav-ext: 5371-2
 * libnginx-mod-http-echo: 5371-2
 * libnginx-mod-http-geoip2: 5371-2
 * libnginx-mod-http-image-filter: 5371-2
 * libnginx-mod-http-subs-filter: 5371-2
 * libnginx-mod-http-upstream-fair: 5371-2
 * libnginx-mod-http-xslt-filter: 5371-2
 * libnginx-mod-mail: 5371-2
 * libnginx-mod-stream: 5371-2
 * libnginx-mod-stream-geoip2: 5371-2
 * libpcre3: 5425-1
 * libssl3: 5402-1
 * libxml2: 5422-1
 * nginx-common: 5371-2
 * nginx-core: 5371-2
 * nginx-full: 5371-2

Revision r271535653284 (ppc64le; channels: edge, 1.18-22.04_beta, latest, 1.18-22.04_edge)
 * libnginx-mod-http-auth-pam: 5371-2
 * libnginx-mod-http-dav-ext: 5371-2
 * libnginx-mod-http-echo: 5371-2
 * libnginx-mod-http-geoip2: 5371-2
 * libnginx-mod-http-image-filter: 5371-2
 * libnginx-mod-http-subs-filter: 5371-2
 * libnginx-mod-http-upstream-fair: 5371-2
 * libnginx-mod-http-xslt-filter: 5371-2
 * libnginx-mod-mail: 5371-2
 * libnginx-mod-stream: 5371-2
 * libnginx-mod-stream-geoip2: 5371-2
 * libpcre3: 5425-1
 * libssl3: 5402-1
 * libxml2: 5422-1
 * nginx-common: 5371-2
 * nginx-core: 5371-2
 * nginx-full: 5371-2

Revision r535219b83a02 (arm64; channels: 1.18-20.04_beta, 1.18-20.04_edge)
 * libpcre3: 5425-1
 * libssl1.1: 5402-1
 * libtiff5: 5421-1
 * libxml2: 5422-1

Revision r621ec4450b3b (amd64; channels: 1.18-20.04_beta, 1.18-20.04_edge)
 * libpcre3: 5425-1
 * libssl1.1: 5402-1
 * libtiff5: 5421-1
 * libxml2: 5422-1

Revision r64cdb82edefe (s390x; channels: 1.18-20.04_beta, 1.18-20.04_edge)
 * libpcre3: 5425-1
 * libssl1.1: 5402-1
 * libtiff5: 5421-1
 * libxml2: 5422-1

Revision r6cc4386a6d07 (amd64; channels: edge, 1.18-22.04_beta, latest, 1.18-22.04_edge)
 * libnginx-mod-http-auth-pam: 5371-2
 * libnginx-mod-http-dav-ext: 5371-2
 * libnginx-mod-http-echo: 5371-2
 * libnginx-mod-http-geoip2: 5371-2
 * libnginx-mod-http-image-filter: 5371-2
 * libnginx-mod-http-subs-filter: 5371-2
 * libnginx-mod-http-upstream-fair: 5371-2
 * libnginx-mod-http-xslt-filter: 5371-2
 * libnginx-mod-mail: 5371-2
 * libnginx-mod-stream: 5371-2
 * libnginx-mod-stream-geoip2: 5371-2
 * libpcre3: 5425-1
 * libssl3: 5402-1
 * libxml2: 5422-1
 * nginx-common: 5371-2
 * nginx-core: 5371-2
 * nginx-full: 5371-2

Revision r73f540d0869c (amd64; channels: 1.18-21.10_edge, 1.18-21.10_beta)
 * libpcre3: 5425-1
 * libssl1.1: 5402-1
 * libtiff5: 5421-1
 * libxml2: 5422-1

Revision r7698a549d298 (s390x; channels: edge, 1.18-22.04_beta, latest, 1.18-22.04_edge)
 * libnginx-mod-http-auth-pam: 5371-2
 * libnginx-mod-http-dav-ext: 5371-2
 * libnginx-mod-http-echo: 5371-2
 * libnginx-mod-http-geoip2: 5371-2
 * libnginx-mod-http-image-filter: 5371-2
 * libnginx-mod-http-subs-filter: 5371-2
 * libnginx-mod-http-upstream-fair: 5371-2
 * libnginx-mod-http-xslt-filter: 5371-2
 * libnginx-mod-mail: 5371-2
 * libnginx-mod-stream: 5371-2
 * libnginx-mod-stream-geoip2: 5371-2
 * libpcre3: 5425-1
 * libssl3: 5402-1
 * libxml2: 5422-1
 * nginx-common: 5371-2
 * nginx-core: 5371-2
 * nginx-full: 5371-2

Revision r9ae362a202ed (ppc64le; channels: 1.18-21.10_edge, 1.18-21.10_beta)
 * libpcre3: 5425-1
 * libssl1.1: 5402-1
 * libtiff5: 5421-1
 * libxml2: 5422-1

Revision rec4edddce626 (ppc64le; channels: 1.18-20.04_beta, 1.18-20.04_edge)
 * libpcre3: 5425-1
 * libssl1.1: 5402-1
 * libtiff5: 5421-1
 * libxml2: 5422-1

Revision recb71a930057 (s390x; channels: 1.18-21.10_edge, 1.18-21.10_beta)
 * libpcre3: 5425-1
 * libssl1.1: 5402-1
 * libtiff5: 5421-1
 * libxml2: 5422-1

Revision rf2cd003732f2 (arm64; channels: 1.18-21.10_edge, 1.18-21.10_beta)
 * libpcre3: 5425-1
 * libssl1.1: 5402-1
 * libtiff5: 5421-1
 * libxml2: 5422-1

Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.

Thank you for your rock and for attending to this matter.

References:
 * https://ubuntu.com/security/notices/USN-5371-2/
 * https://ubuntu.com/security/notices/USN-5402-1/
 * https://ubuntu.com/security/notices/USN-5421-1/
 * https://ubuntu.com/security/notices/USN-5422-1/
 * https://ubuntu.com/security/notices/USN-5425-1/
  Thread PreviousDate PreviousThread Next