ubuntu-docker-images team mailing list archive
-
ubuntu-docker-images team
-
Mailing list archive
-
Message #01069
memcached contains outdated Ubuntu packages
-
To:
rocks@xxxxxxxxxxxxx, sergio.durigan@xxxxxxxxxxxxx, athos.ribeiro@xxxxxxxxxxxxx, carl.csaposs@xxxxxxxxxxxxx, dragomir.penev@xxxxxxxxxxxxx, jose.masson@xxxxxxxxxxxxx, leon.mintz@xxxxxxxxxxxxx, paulo.machado@xxxxxxxxxxxxx, simon.aronsson@xxxxxxxxxxxxx, ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
-
From:
security-team-toolbox-bot@xxxxxxxxxxxxx
-
Date:
Wed, 16 Apr 2025 05:17:35 -0000
A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r08b232e0cb2a (s390x; channels: edge, 1.6-24.10_edge, 1.6-24.10_beta, latest)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r1c4c9410cdad (arm64; channels: 1.6-22.04_beta, 1.6-22.04_edge)
* libperl5.34: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.34: 7434-1
Revision r1e573d187212 (amd64; channels: 1.6-24.04_beta, 1.6-24.04_edge)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r368c08157ac8 (amd64; channels: 1.6-22.04_beta, 1.6-22.04_edge)
* libperl5.34: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.34: 7434-1
Revision r39f9603002b1 (ppc64le; channels: 1.6-24.04_beta, 1.6-24.04_edge)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r40b29da98d92 (arm64; channels: edge, 1.6-24.10_edge, 1.6-24.10_beta, latest)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r5418644f7e7a (ppc64le; channels: edge, 1.6-24.10_edge, 1.6-24.10_beta, latest)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r698176aa4f4e (arm64; channels: 1.6-24.04_beta, 1.6-24.04_edge)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision r6de8faa8192d (amd64; channels: edge, 1.6-24.10_edge, 1.6-24.10_beta, latest)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Revision rb88c16b4a163 (s390x; channels: 1.6-22.04_beta, 1.6-22.04_edge)
* libperl5.34: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.34: 7434-1
Revision rda5d391a57e2 (ppc64le; channels: 1.6-22.04_beta, 1.6-22.04_edge)
* libperl5.34: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.34: 7434-1
Revision re37398403b42 (s390x; channels: 1.6-24.04_beta, 1.6-24.04_edge)
* libperl5.38t64: 7434-1
* perl: 7434-1
* perl-base: 7434-1
* perl-modules-5.38: 7434-1
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-7434-1/
