ubuntu-docker-images team mailing list archive
-
ubuntu-docker-images team
-
Mailing list archive
-
Message #00570
memcached contains outdated Ubuntu packages
-
To:
rocks@xxxxxxxxxxxxx, sergio.durigan@xxxxxxxxxxxxx, athos.ribeiro@xxxxxxxxxxxxx, carl.csaposs@xxxxxxxxxxxxx, dragomir.penev@xxxxxxxxxxxxx, jose.masson@xxxxxxxxxxxxx, leon.mintz@xxxxxxxxxxxxx, paulo.machado@xxxxxxxxxxxxx, ryan.barry@xxxxxxxxxxxxx, simon.aronsson@xxxxxxxxxxxxx, ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
-
From:
security-team-toolbox-bot@xxxxxxxxxxxxx
-
Date:
Wed, 24 May 2023 05:16:11 +0000 (UTC)
A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r03d3b35e2914 (ppc64le; channels: 1.6-23.04_edge, edge, 1.6-23.04_beta, latest)
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision r33af69cf9ed7 (ppc64le; channels: 1.6-22.04_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision r3c15979ee9c6 (arm64; channels: 1.5-20.04_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision r4376cb18d75f (ppc64le; channels: 1.6-22.10_edge, 1.6-22.10_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision r4782c3253e23 (s390x; channels: 1.6-22.04_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision r4e872bd0f031 (amd64; channels: 1.5-20.04_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision r745d92475439 (amd64; channels: 1.6-22.10_edge, 1.6-22.10_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision r85aa04f5651a (ppc64le; channels: 1.5-20.04_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision r9d097d2ab818 (amd64; channels: 1.6-23.04_edge, edge, 1.6-23.04_beta, latest)
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision rad84063cff0f (s390x; channels: 1.6-22.10_edge, 1.6-22.10_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision rbbf55b741c13 (s390x; channels: 1.5-20.04_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision rc68e30226ca0 (arm64; channels: 1.6-22.10_edge, 1.6-22.10_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision rd8b16d8e5eaf (amd64; channels: 1.6-22.04_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision rd9c171e3638a (arm64; channels: 1.6-23.04_edge, edge, 1.6-23.04_beta, latest)
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision rdb7024ab22ab (arm64; channels: 1.6-22.04_beta)
* libncurses6: 6099-1
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Revision rec4051fa350c (s390x; channels: 1.6-23.04_edge, edge, 1.6-23.04_beta, latest)
* libncursesw6: 6099-1
* libtinfo6: 6099-1
* ncurses-base: 6099-1
* ncurses-bin: 6099-1
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-6099-1/
Follow ups
