← Back to team overview

ubuntu-docker-images team mailing list archive

  1. ubuntu-docker-images team
  2. Mailing list archive
  3. Message #00461

Re: memcached contains outdated Ubuntu packages

  Thread PreviousDate PreviousThread Next 
On Thu, Jan 26, 2023 at 05:06:40AM +0000, security-team-toolbox-bot@xxxxxxxxxxxxx wrote:

A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:

Revision r31807bd6fdd6 (arm64; channels: 1.6-22.04_beta, 1.6-22.04_edge)
* libgssapi-krb5-2: 5828-1
* libk5crypto3: 5828-1
* libkrb5-3: 5828-1
* libkrb5support0: 5828-1
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision r4305e40ad401 (arm64; channels: 1.6-22.10_beta, 1.6-22.10_edge, edge, latest)
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision r789e6dce8bf3 (s390x; channels: 1.5-20.04_beta, 1.5-20.04_edge)
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision r99569c89736f (ppc64le; channels: 1.6-22.10_beta, 1.6-22.10_edge, edge, latest)
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision ra7c5339574dc (s390x; channels: 1.6-22.04_beta, 1.6-22.04_edge)
* libgssapi-krb5-2: 5828-1
* libk5crypto3: 5828-1
* libkrb5-3: 5828-1
* libkrb5support0: 5828-1
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision ra9eb1112c5d2 (ppc64le; channels: 1.6-22.04_beta, 1.6-22.04_edge)
* libgssapi-krb5-2: 5828-1
* libk5crypto3: 5828-1
* libkrb5-3: 5828-1
* libkrb5support0: 5828-1
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision rba19f3fd4e74 (amd64; channels: 1.5-20.04_beta, 1.5-20.04_edge)
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision rc593adf5c5b8 (amd64; channels: 1.6-22.04_beta, 1.6-22.04_edge)
* libgssapi-krb5-2: 5828-1
* libk5crypto3: 5828-1
* libkrb5-3: 5828-1
* libkrb5support0: 5828-1
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision re1806041c79a (amd64; channels: 1.6-22.10_beta, 1.6-22.10_edge, edge, latest)
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision re1ce2f8ceb9f (ppc64le; channels: 1.5-20.04_beta, 1.5-20.04_edge)
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision rf0e1dc0b65c4 (arm64; channels: 1.5-20.04_beta, 1.5-20.04_edge)
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Revision rf983cfd7eadf (s390x; channels: 1.6-22.10_beta, 1.6-22.10_edge, edge, latest)
* libpam-modules: 5825-1
* libpam-modules-bin: 5825-1
* libpam-runtime: 5825-1
* libpam0g: 5825-1

Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.

Thank you for your rock and for attending to this matter.

References:
* https://ubuntu.com/security/notices/USN-5825-1/
* https://ubuntu.com/security/notices/USN-5828-1/


These images have been re-built and re-tagged.

--
Athos Ribeiro

References

  Thread PreviousDate PreviousThread Next