studio/meet
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

🔒️(frontend) update libxml2 to fix CVE-2025-27113 vulnerability

Browse Source 
Upgraded libxml2 from version 2.12.7-r1 to 2.12.7-r2 to address
a HIGH severity NULL Pointer Dereference vulnerability. This security update
prevents potential application crashes that could be triggered through
malicious XML input.
This commit is contained in:
lebaudantoine
2025-03-13 19:07:36 +01:00
committed by aleb_the_flash
parent 332662d1e5
commit fdb6dda65b
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/frontend/Dockerfile
View File

@@ -38,7 +38,7 @@ RUN npm run build
FROM nginxinc/nginx-unprivileged:1.26-alpine AS frontend-production FROM nginxinc/nginx-unprivileged:1.26-alpine AS frontend-production
USER root USER root
RUN apk update && apk upgrade libssl3 libcrypto3 RUN apk update && apk upgrade libssl3 libcrypto3 libxml2>=2.12.7-r2
USER nginx USER nginx