Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: None
Affects Version/s: None
Component/s: build
Labels:
None

Sprint:
Build Team 2022 Sprint 17
Story Points:
1

Description

At least couchbase-operator/docker/couchbase-operator/Dockerfile.rhel is locked to UBI8 version 8.4-200, which is from June 2021. Also the Dockerfile skips the necessary step to install security updates with a comment that this is OK because the base image is frequently updated. This resulted in at least couchbase-operator:2.3.2 shipping with four known CVEs.

We should only reference UBI8 version "8" so we always pull and build with the latest, most up-to-date version.

Attachments

Issue Links

mentioned in: Page Loading...

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Chris Hillery

Reporter:: Chris Hillery

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 15/Aug/22 3:01 PM

Updated:: 20/Sep/22 8:37 AM

Resolved:: 20/Sep/22 8:37 AM

Gerrit Reviews

There are no open Gerrit changes

RHEl Dockerfile(s) not following correct security practices

Details

Description

Attachments

Issue Links

Gerrit Reviews

Activity

People

Dates

Gerrit Reviews

PagerDuty