ubuntu-docker-images team mailing list archive

[Athos Ribeiro <athos.ribeiro@xxxxxxxxxxxxx>]

On Wed, Aug 16, 2023 at 05:16:16AM +0000, security-team-toolbox-bot@xxxxxxxxxxxxx wrote:
> A scan of this rock shows that it was built with packages from the Ubuntu
> archive that have since received security updates. The following lists new
> USNs for affected binary packages in each rock revision:
>
> Revision r0fef7a960858 (s390x; channels: 1.18-22.04_edge, 1.18-22.04_beta)
> * libtiff5: 6290-1
>
> Revision r25df10b11ef2 (amd64; channels: 1.18-22.04_edge, 1.18-22.04_beta)
> * libtiff5: 6290-1
>
> Revision r908576418578 (arm64; channels: 1.18-20.04_beta)
> * libtiff5: 6290-1
>
> Revision r9fc676112664 (ppc64le; channels: 1.18-20.04_beta)
> * libtiff5: 6290-1
>
> Revision rb44b59eaf41a (ppc64le; channels: 1.18-22.04_edge, 1.18-22.04_beta)
> * libtiff5: 6290-1
>
> Revision rb9affbeb4745 (s390x; channels: 1.18-20.04_beta)
> * libtiff5: 6290-1
>
> Revision rcf0c563a4e14 (amd64; channels: edge, latest, 1.22-23.04_beta)
> * libtiff6: 6290-1
>
> Revision rdc02352fc11e (amd64; channels: 1.18-20.04_beta)
> * libtiff5: 6290-1
>
> Revision re146432e420b (s390x; channels: edge, latest, 1.22-23.04_beta)
> * libtiff6: 6290-1
>
> Revision re444b368490c (arm64; channels: 1.18-22.04_edge, 1.18-22.04_beta)
> * libtiff5: 6290-1
>
> Revision re75b644b37fa (ppc64le; channels: edge, latest, 1.22-23.04_beta)
> * libtiff6: 6290-1
>
> Revision refcfaacbfb01 (arm64; channels: edge, latest, 1.22-23.04_beta)
> * libtiff6: 6290-1
>
> Simply rebuilding the rock will pull in the new security updates and
> resolve this. If your rock also contains vendored code, now might be a
> good time to review it for any needed updates.
>
> Thank you for your rock and for attending to this matter.
>
> References:
> * https://ubuntu.com/security/notices/USN-6290-1/

These images have been rebuilt and retagged.

--
Athos Ribeiro