ubuntu-docker-images team mailing list archive
-
ubuntu-docker-images team
-
Mailing list archive
-
Message #01077
bind9 contains outdated Ubuntu packages
-
To:
rocks@xxxxxxxxxxxxx, evan.caville@xxxxxxxxxxxxx, athos.ribeiro@xxxxxxxxxxxxx, carl.csaposs@xxxxxxxxxxxxx, dragomir.penev@xxxxxxxxxxxxx, jose.masson@xxxxxxxxxxxxx, leon.mintz@xxxxxxxxxxxxx, paulo.machado@xxxxxxxxxxxxx, simon.aronsson@xxxxxxxxxxxxx, ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx
-
From:
security-team-toolbox-bot@xxxxxxxxxxxxx
-
Date:
Wed, 16 Jul 2025 09:33:07 +0000 (UTC)
A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r1bab4fc3540a (ppc64le; channels: 9.18-22.04_edge, 9.18-22.04_beta)
* libgnutls30: 7635-1
Revision r52a9c1d4cec5 (ppc64le; channels: 9.18-24.04_beta, 9.18-24.04_edge)
* libc-bin: 7634-1
* libc6: 7634-1
* libgnutls30t64: 7635-1
Revision r85f38f6afd95 (s390x; channels: 9.18-24.04_beta, 9.18-24.04_edge)
* libc-bin: 7634-1
* libc6: 7634-1
* libgnutls30t64: 7635-1
Revision r8d3eee0d3e91 (s390x; channels: 9.18-22.04_edge, 9.18-22.04_beta)
* libgnutls30: 7635-1
Revision r90b9314d19c3 (amd64; channels: 9.18-24.04_beta, 9.18-24.04_edge)
* libc-bin: 7634-1
* libc6: 7634-1
* libgnutls30t64: 7635-1
Revision rc69abb9ab122 (amd64; channels: 9.18-22.04_edge, 9.18-22.04_beta)
* libgnutls30: 7635-1
Revision rd098e53507bd (arm64; channels: 9.18-22.04_edge, 9.18-22.04_beta)
* libgnutls30: 7635-1
Revision rfa47f75a5483 (arm64; channels: 9.18-24.04_beta, 9.18-24.04_edge)
* libc-bin: 7634-1
* libc6: 7634-1
* libgnutls30t64: 7635-1
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-7634-1/
* https://ubuntu.com/security/notices/USN-7635-1/
