From 9f06ba2a6cfd4d340ec4c8394c0790abe1108619 Mon Sep 17 00:00:00 2001 From: Daniel Holbach Date: Fri, 5 Jun 2020 11:05:32 +0200 Subject: [PATCH] Update alpine and git version fixes following issues: - CVE-2020-5260 (git) - CVE-2020-12243 (openldap) - CVE-2020-1967 (openssl) - CVE-2020-11655 (sqlite) --- docker/Dockerfile.flux | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docker/Dockerfile.flux b/docker/Dockerfile.flux index bd98e0071..4def09fb8 100644 --- a/docker/Dockerfile.flux +++ b/docker/Dockerfile.flux @@ -1,8 +1,8 @@ -FROM alpine:3.11 +FROM alpine:3.12 WORKDIR /home/flux -RUN apk add --no-cache openssh-client ca-certificates tini 'git>=2.12.0' 'gnutls>=3.6.7' 'glib>=2.62.5-r0' gnupg gawk socat +RUN apk add --no-cache openssh-client ca-certificates tini 'git>=2.24.2' 'gnutls>=3.6.7' 'glib>=2.62.5-r0' gnupg gawk socat RUN apk add --no-cache -X http://dl-cdn.alpinelinux.org/alpine/edge/testing git-secret # Add git hosts to known hosts file so we can use