ubuntu-docker-images team mailing list archive
-
ubuntu-docker-images team
-
Mailing list archive
-
Message #00591
squid contains outdated Ubuntu packages
-
To:
rocks@xxxxxxxxxxxxx, sergio.durigan@xxxxxxxxxxxxx, athos.ribeiro@xxxxxxxxxxxxx, carl.csaposs@xxxxxxxxxxxxx, dragomir.penev@xxxxxxxxxxxxx, jose.masson@xxxxxxxxxxxxx, leon.mintz@xxxxxxxxxxxxx, paulo.machado@xxxxxxxxxxxxx, ryan.barry@xxxxxxxxxxxxx, simon.aronsson@xxxxxxxxxxxxx, ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
-
From:
security-team-toolbox-bot@xxxxxxxxxxxxx
-
Date:
Fri, 2 Jun 2023 05:15:11 +0000 (UTC)
A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r0c02cf8893b6 (ppc64le; channels: 5.6-22.10_beta)
* libssl3: 6119-1
* openssl: 6119-1
Revision r11c5472c4253 (ppc64le; channels: 5.2-22.04_edge, 5.2-22.04_beta)
* libssl3: 6119-1
* openssl: 6119-1
Revision r16f0391e3ab6 (ppc64le; channels: 5.7-23.04_beta, latest, edge, 5.7-23.04_edge)
* libssl3: 6119-1
* openssl: 6119-1
Revision r20c293aad830 (s390x; channels: 5.6-22.10_beta)
* libssl3: 6119-1
* openssl: 6119-1
Revision r2f178d2d7ead (amd64; channels: 5.7-23.04_beta, latest, edge, 5.7-23.04_edge)
* libssl3: 6119-1
* openssl: 6119-1
Revision r4f52cf656219 (arm64; channels: 5.6-22.10_beta)
* libssl3: 6119-1
* openssl: 6119-1
Revision r57019a802a77 (amd64; channels: 5.6-22.10_beta)
* libssl3: 6119-1
* openssl: 6119-1
Revision r99cc3ace0b0f (ppc64le; channels: 4.10-20.04_beta)
* libssl1.1: 6119-1
* openssl: 6119-1
Revision r9aba0f558efd (amd64; channels: 5.2-22.04_edge, 5.2-22.04_beta)
* libssl3: 6119-1
* openssl: 6119-1
Revision rb80e0e17f97e (arm64; channels: 4.10-20.04_beta)
* libssl1.1: 6119-1
* openssl: 6119-1
Revision rc946f3c56663 (arm64; channels: 5.7-23.04_beta, latest, edge, 5.7-23.04_edge)
* libssl3: 6119-1
* openssl: 6119-1
Revision rd4c1bd947143 (arm64; channels: 5.2-22.04_edge, 5.2-22.04_beta)
* libssl3: 6119-1
* openssl: 6119-1
Revision rd6fcb2d2744c (s390x; channels: 5.2-22.04_edge, 5.2-22.04_beta)
* libssl3: 6119-1
* openssl: 6119-1
Revision rdd957201cd00 (amd64; channels: 4.10-20.04_beta)
* libssl1.1: 6119-1
* openssl: 6119-1
Revision rf4f6ed6c3362 (s390x; channels: 5.7-23.04_beta, latest, edge, 5.7-23.04_edge)
* libssl3: 6119-1
* openssl: 6119-1
Revision rf7e6e6fbca1f (s390x; channels: 4.10-20.04_beta)
* libssl1.1: 6119-1
* openssl: 6119-1
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-6119-1/
Follow ups
