Skip to content

[Snyk] Security upgrade ubuntu from latest to 22.04#39

Closed
jentfoo wants to merge 1 commit intomasterfrom
snyk-fix-bd4ca8ac8d6a739668f923067f4e5fdd
Closed

[Snyk] Security upgrade ubuntu from latest to 22.04#39
jentfoo wants to merge 1 commit intomasterfrom
snyk-fix-bd4ca8ac8d6a739668f923067f4e5fdd

Conversation

@jentfoo
Copy link
Copy Markdown

@jentfoo jentfoo commented Jun 7, 2022

This PR was automatically created by Snyk using the credentials of a real user.


Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Changes included in this PR

  • Dockerfile

We recommend upgrading to ubuntu:22.04, as this image has only 11 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Some of the most important vulnerabilities in your base image include:

Severity Issue Exploit Maturity
medium severity CVE-2022-1664
SNYK-UBUNTU2204-DPKG-2847996		 No Known Exploit
medium severity Out-of-bounds Read
SNYK-UBUNTU2204-E2FSPROGS-2801319		 No Known Exploit
medium severity Improper Certificate Validation
SNYK-UBUNTU2204-OPENSSL-2807615		 No Known Exploit
medium severity OS Command Injection
SNYK-UBUNTU2204-OPENSSL-2807639		 No Known Exploit
medium severity Improper Verification of Cryptographic Signature
SNYK-UBUNTU2204-PERL-2789081		 No Known Exploit

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

@verygoodbot
Copy link
Copy Markdown

verygoodbot commented Jun 7, 2022

🍄 Trufflehog Scan

Secrets FOUND!

Show Output 

~~~~~~~~~~~~~~~~~~~~~
Reason: GitHub
Date: 2022-06-07 22:02:53
Hash: 9d132bb84e1a37a896a6c600457c98740335cd92
Filepath: repokitteh.star
Branch: origin/snyk-fix-bd4ca8ac8d6a739668f923067f4e5fdd
Commit: fix: Dockerfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-UBUNTU2204-DPKG-2847996
- https://snyk.io/vuln/SNYK-UBUNTU2204-E2FSPROGS-2801319
- https://snyk.io/vuln/SNYK-UBUNTU2204-OPENSSL-2807615
- https://snyk.io/vuln/SNYK-UBUNTU2204-OPENSSL-2807639
- https://snyk.io/vuln/SNYK-UBUNTU2204-PERL-2789081
github.com/repokitteh/modules", "4ee2ed0c3622aad7fcddc04cb5dc866e44a541e6"
~~~~~~~~~~~~~~~~~~~~~

@jentfoo jentfoo closed this Aug 2, 2022
@jentfoo jentfoo deleted the snyk-fix-bd4ca8ac8d6a739668f923067f4e5fdd branch August 2, 2022 22:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jentfoo @verygoodbot @snyk-bot