ubuntu-docker-images team mailing list archive

[Athos Ribeiro <athos.ribeiro@xxxxxxxxxxxxx>]

On Wed, Jan 18, 2023 at 05:08:13AM +0000, security-team-toolbox-bot@xxxxxxxxxxxxx wrote:
> A scan of this rock shows that it was built with packages from the Ubuntu
> archive that have since received security updates. The following lists new
> USNs for affected binary packages in each rock revision:
>
> Revision r132c95d1ffda (amd64; channels: 1.18-22.04_edge, 1.18-22.04_beta)
> * libxpm4: 5807-1
>
> Revision r3f2844dd6f4e (amd64; channels: 1.22-22.10_edge, 1.22-22.10_beta, edge, latest)
> * libxpm4: 5807-1
>
> Revision r653ea7d13b23 (s390x; channels: 1.22-22.10_edge, 1.22-22.10_beta, edge, latest)
> * libxpm4: 5807-1
>
> Revision r78a19ce56125 (amd64; channels: 1.18-20.04_beta, 1.18-20.04_edge)
> * libxpm4: 5807-1
>
> Revision r793799ccdffb (arm64; channels: 1.18-20.04_beta, 1.18-20.04_edge)
> * libxpm4: 5807-1
>
> Revision r84cf83bf73ae (s390x; channels: 1.18-22.04_edge, 1.18-22.04_beta)
> * libxpm4: 5807-1
>
> Revision rb90bccd44486 (s390x; channels: 1.18-20.04_beta, 1.18-20.04_edge)
> * libxpm4: 5807-1
>
> Revision rd934504bef5c (arm64; channels: 1.22-22.10_edge, 1.22-22.10_beta, edge, latest)
> * libxpm4: 5807-1
>
> Revision re167998cd565 (ppc64le; channels: 1.18-22.04_edge, 1.18-22.04_beta)
> * libxpm4: 5807-1
>
> Revision red76b926d046 (arm64; channels: 1.18-22.04_edge, 1.18-22.04_beta)
> * libxpm4: 5807-1
>
> Revision rf2ba90a8a308 (ppc64le; channels: 1.18-20.04_beta, 1.18-20.04_edge)
> * libxpm4: 5807-1
>
> Revision rfd9a1f1ede9d (ppc64le; channels: 1.22-22.10_edge, 1.22-22.10_beta, edge, latest)
> * libxpm4: 5807-1
>
> Simply rebuilding the rock will pull in the new security updates and
> resolve this. If your rock also contains vendored code, now might be a
> good time to review it for any needed updates.
>
> Thank you for your rock and for attending to this matter.
>
> References:
> * https://ubuntu.com/security/notices/USN-5807-1/

These images were re-built and re-tagged.

--
Athos Ribeiro