← Back to team overview

ubuntu-docker-images team mailing list archive

Re: postgres contains outdated Ubuntu packages

 

Images were rebuilt and rettaged.

On Wed, Nov 2, 2022 at 2:15 AM <security-team-toolbox-bot@xxxxxxxxxxxxx>
wrote:

> A scan of this rock shows that it was built with packages from the Ubuntu
> archive that have since received security updates. The following lists new
> USNs for affected binary packages in each rock revision:
>
> Revision r4cae3e6c942a (arm64; channels: edge, 14-22.04_edge,
> 14-22.04_beta, latest)
>  * libssl3: 5710-1
>  * openssl: 5710-1
>
> Revision r54e20d9fbd20 (amd64; channels: edge, 14-22.04_edge,
> 14-22.04_beta, latest)
>  * libssl3: 5710-1
>  * openssl: 5710-1
>
> Revision r5782f11b7d9d (ppc64le; channels: edge, 14-22.04_edge,
> 14-22.04_beta, latest)
>  * libssl3: 5710-1
>  * openssl: 5710-1
>
> Revision rc24f0d399e98 (s390x; channels: edge, 14-22.04_edge,
> 14-22.04_beta, latest)
>  * libssl3: 5710-1
>  * openssl: 5710-1
>
> Simply rebuilding the rock will pull in the new security updates and
> resolve this. If your rock also contains vendored code, now might be a
> good time to review it for any needed updates.
>
> Thank you for your rock and for attending to this matter.
>
> References:
>  * https://ubuntu.com/security/notices/USN-5710-1/
>

References