ubuntu-docker-images team mailing list archive
-
ubuntu-docker-images team
-
Mailing list archive
-
Message #00354
redis contains outdated Ubuntu packages
-
To:
rocks@xxxxxxxxxxxxx, sergio.durigan@xxxxxxxxxxxxx, balbir.thomas@xxxxxxxxxxxxx, athos.ribeiro@xxxxxxxxxxxxx, paulo.machado@xxxxxxxxxxxxx, jose.masson@xxxxxxxxxxxxx, leon.mintz@xxxxxxxxxxxxx, ryan.barry@xxxxxxxxxxxxx, simon.aronsson@xxxxxxxxxxxxx, ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
-
From:
security-team-toolbox-bot@xxxxxxxxxxxxx
-
Date:
Thu, 20 Oct 2022 05:16:20 +0000 (UTC)
A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r1218e3954fd1 (arm64; channels: 5.0-20.04_beta, 5.0-20.04_edge)
* perl-base: 5689-1
Revision r4862a0b4f613 (amd64; channels: edge, 6.0-22.04_beta, latest, 6.0-22.04_edge)
* perl-base: 5689-1
Revision r548e059b4c3f (arm64; channels: edge, 6.0-22.04_beta, latest, 6.0-22.04_edge)
* perl-base: 5689-1
Revision r5d7e318ad5e9 (amd64; channels: 5.0-20.04_beta, 5.0-20.04_edge)
* perl-base: 5689-1
Revision r678cc19c2c59 (ppc64le; channels: edge, 6.0-22.04_beta, latest, 6.0-22.04_edge)
* perl-base: 5689-1
Revision r84bed9a9f747 (ppc64le; channels: 5.0-20.04_beta, 5.0-20.04_edge)
* perl-base: 5689-1
Revision rd34b114dd53e (s390x; channels: 5.0-20.04_beta, 5.0-20.04_edge)
* perl-base: 5689-1
Revision rfdbff6dc6ea6 (s390x; channels: edge, 6.0-22.04_beta, latest, 6.0-22.04_edge)
* perl-base: 5689-1
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-5689-1/
Follow ups
