ubuntu-docker-images team mailing list archive

[security-team-toolbox-bot@xxxxxxxxxxxxx]

A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:

Revision r151e01313cfd (amd64; channels: 2.4-22.10_beta)
 * libssl3: 6039-1

Revision r3804b3063aaa (arm64; channels: 2.4-22.10_beta)
 * libssl3: 6039-1

Revision r3d264c3f6720 (arm64; channels: 2.4-22.04_edge, 2.4-22.04_beta)
 * libssl3: 6039-1

Revision r4242d2f58dec (ppc64le; channels: 2.4-20.04_beta)
 * libssl1.1: 6039-1

Revision r4633a9352f12 (amd64; channels: 2.4-22.04_edge, 2.4-22.04_beta)
 * libssl3: 6039-1

Revision r60ebb86db17f (s390x; channels: 2.4-22.04_edge, 2.4-22.04_beta)
 * libssl3: 6039-1

Revision r8a3f58b8dd7b (arm64; channels: 2.4-20.04_beta)
 * libssl1.1: 6039-1

Revision r91f0a99c500a (s390x; channels: 2.4-22.10_beta)
 * libssl3: 6039-1

Revision r94d0292b9f3a (ppc64le; channels: 2.4-22.04_edge, 2.4-22.04_beta)
 * libssl3: 6039-1

Revision r9ec6d1229e94 (amd64; channels: 2.4-20.04_beta)
 * libssl1.1: 6039-1

Revision rcfb471fbe7c1 (s390x; channels: 2.4-20.04_beta)
 * libssl1.1: 6039-1

Revision re0d3312c0430 (ppc64le; channels: 2.4-22.10_beta)
 * libssl3: 6039-1

Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.

Thank you for your rock and for attending to this matter.

References:
 * https://ubuntu.com/security/notices/USN-6039-1/