From fdb6dda65bc782c687f331ac852b75d4fb77a524 Mon Sep 17 00:00:00 2001
From: lebaudantoine <lebaud.antoine131@gmail.com>
Date: Thu, 13 Mar 2025 19:07:36 +0100
Subject: [PATCH] =?UTF-8?q?=F0=9F=94=92=EF=B8=8F(frontend)=20update=20libx?=
 =?UTF-8?q?ml2=20to=20fix=20CVE-2025-27113=20vulnerability?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Upgraded libxml2 from version 2.12.7-r1 to 2.12.7-r2 to address
a HIGH severity NULL Pointer Dereference vulnerability. This security update
prevents potential application crashes that could be triggered through
malicious XML input.
---
 src/frontend/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/frontend/Dockerfile b/src/frontend/Dockerfile
index 410187d3..4f5a550b 100644
--- a/src/frontend/Dockerfile
+++ b/src/frontend/Dockerfile
@@ -38,7 +38,7 @@ RUN npm run build
 FROM nginxinc/nginx-unprivileged:1.26-alpine AS frontend-production
 
 USER root
-RUN apk update && apk upgrade libssl3 libcrypto3
+RUN apk update && apk upgrade libssl3 libcrypto3 libxml2>=2.12.7-r2
 
 USER nginx