From fe9fb67fedeaf99ff0f9cb7800b1631ffb8c49e1 Mon Sep 17 00:00:00 2001 From: Quentin BEY Date: Fri, 16 May 2025 10:03:52 +0200 Subject: [PATCH] =?UTF-8?q?=F0=9F=94=92=EF=B8=8F(docker)=20patch=20libxml?= =?UTF-8?q?=20to=20address=20CVE?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Trivy scan detects some issue: ┌─────────┬────────────────┬──────────┬────────┬───────────────────┬───────────────┬───────────────────────────────────────────────────────────┐ │ Library │ Vulnerability │ Severity │ Status │ Installed Version │ Fixed Version │ Title │ ├─────────┼────────────────┼──────────┼────────┼───────────────────┼───────────────┼───────────────────────────────────────────────────────────┤ │ libxml2 │ CVE-2025-32414 │ HIGH │ fixed │ 2.13.4-r5 │ 2.13.4-r6 │ libxml2: Out-of-Bounds Read in libxml2 │ │ │ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2025-32414 │ │ ├────────────────┤ │ │ │ ├───────────────────────────────────────────────────────────┤ │ │ CVE-2025-32415 │ │ │ │ │ libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables │ │ │ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2025-32415 │ └─────────┴────────────────┴──────────┴────────┴───────────────────┴───────────────┴───────────────────────────────────────────────────────────┘ --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 8c7dea0..e755fcc 100644 --- a/Dockerfile +++ b/Dockerfile @@ -43,7 +43,7 @@ FROM nginxinc/nginx-unprivileged:1.27-alpine AS frontend-production USER root -RUN apk update && apk upgrade libssl3 libcrypto3 +RUN apk update && apk upgrade libssl3 libcrypto3 libxml2 USER nginx