ubuntu-docker-images team mailing list archive

[security-team-toolbox-bot@xxxxxxxxxxxxx]

A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:

Revision r081d2cdb3c4e (ppc64le; channels: 2.4-22.10_beta, latest, edge, 2.4-22.10_edge)
 * libxml2: 5760-1

Revision r3072805987e4 (ppc64le; channels: 2.4-20.04_edge, 2.4-20.04_beta)
 * libxml2: 5760-1

Revision r411ebc3d234e (amd64; channels: 2.4-22.04_beta, 2.4-22.04_edge)
 * libxml2: 5760-1

Revision r48c0880289f7 (arm64; channels: 2.4-22.04_beta, 2.4-22.04_edge)
 * libxml2: 5760-1

Revision r54d368b5009e (arm64; channels: 2.4-22.10_beta, latest, edge, 2.4-22.10_edge)
 * libxml2: 5760-1

Revision r55c4d41c0b61 (amd64; channels: 2.4-20.04_edge, 2.4-20.04_beta)
 * libxml2: 5760-1

Revision r7dc9d3ef22ff (amd64; channels: 2.4-22.10_beta, latest, edge, 2.4-22.10_edge)
 * libxml2: 5760-1

Revision r877116c7c6f1 (arm64; channels: 2.4-20.04_edge, 2.4-20.04_beta)
 * libxml2: 5760-1

Revision ra9afe1be3c4a (s390x; channels: 2.4-20.04_edge, 2.4-20.04_beta)
 * libxml2: 5760-1

Revision rabc5ee377c1d (s390x; channels: 2.4-22.10_beta, latest, edge, 2.4-22.10_edge)
 * libxml2: 5760-1

Revision rf849e8603f0a (s390x; channels: 2.4-22.04_beta, 2.4-22.04_edge)
 * libxml2: 5760-1

Revision rf935901f5dbd (ppc64le; channels: 2.4-22.04_beta, 2.4-22.04_edge)
 * libxml2: 5760-1

Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.

Thank you for your rock and for attending to this matter.

References:
 * https://ubuntu.com/security/notices/USN-5760-1/