ubuntu-docker-images team mailing list archive
-
ubuntu-docker-images team
-
Mailing list archive
-
Message #01067
apache2 contains outdated Ubuntu packages
-
To:
rocks@xxxxxxxxxxxxx, sergio.durigan@xxxxxxxxxxxxx, athos.ribeiro@xxxxxxxxxxxxx, carl.csaposs@xxxxxxxxxxxxx, dragomir.penev@xxxxxxxxxxxxx, jose.masson@xxxxxxxxxxxxx, leon.mintz@xxxxxxxxxxxxx, paulo.machado@xxxxxxxxxxxxx, simon.aronsson@xxxxxxxxxxxxx, ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
-
From:
security-team-toolbox-bot@xxxxxxxxxxxxx
-
Date:
Wed, 16 Apr 2025 05:17:31 -0000
A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r0bd2aa78defa (s390x; channels: 2.4-24.04_beta, 2.4-24.04_edge)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r237d73834da6 (arm64; channels: edge, 2.4-24.10_beta, 2.4-24.10_edge, latest)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r3f22bea2f53b (arm64; channels: 2.4-24.04_beta, 2.4-24.04_edge)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r42be4e1d13c0 (s390x; channels: 2.4-22.04_beta, 2.4-22.04_edge)
* libperl5.34: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.34: 7434-1
Revision r48bf8b48f706 (ppc64le; channels: 2.4-24.04_beta, 2.4-24.04_edge)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r67df778bd1c9 (arm64; channels: 2.4-22.04_beta, 2.4-22.04_edge)
* libperl5.34: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.34: 7434-1
Revision ra787fdd9656e (amd64; channels: edge, 2.4-24.10_beta, 2.4-24.10_edge, latest)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision raf15ca36b07f (amd64; channels: 2.4-22.04_beta, 2.4-22.04_edge)
* libperl5.34: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.34: 7434-1
Revision rc801c105d5bc (amd64; channels: 2.4-24.04_beta, 2.4-24.04_edge)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision rcde4b76f6944 (s390x; channels: edge, 2.4-24.10_beta, 2.4-24.10_edge, latest)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision rfb2fe2641539 (ppc64le; channels: edge, 2.4-24.10_beta, 2.4-24.10_edge, latest)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision rfec898ca7c8c (ppc64le; channels: 2.4-22.04_beta, 2.4-22.04_edge)
* libperl5.34: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.34: 7434-1
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-7434-1/
