Skip to content

fix(sec): CVE & OS Patching#8634

Merged
skrdgraph merged 3 commits intomainfrom
skrdgraph/cve_fixes
Jan 30, 2023
Merged

fix(sec): CVE & OS Patching#8634
skrdgraph merged 3 commits intomainfrom
skrdgraph/cve_fixes

Conversation

@skrdgraph
Copy link
Copy Markdown
Contributor

@skrdgraph skrdgraph commented Jan 29, 2023
edited
Loading

Problem

CVE-2022-41717
os pinning too tight, causes out-of-date packages in our base dockerfile (it's good to pin closer to release* to avoid variability at env layer)

Solution

  • bump net lib version
  • remove dockerfile os pkg pins (and ref to latest)

@skrdgraph skrdgraph marked this pull request as ready for review January 29, 2023 09:04
@skrdgraph skrdgraph changed the title fix(sec): CVE-2022-41717 fix(sec): CVE & OS Patching Jan 29, 2023
@coveralls
Copy link
Copy Markdown

coveralls commented Jan 29, 2023
edited
Loading

Coverage Status

Coverage: 66.661% (-0.4%) from 67.088% when pulling 9eab755 on skrdgraph/cve_fixes into 09a8e45 on main.

@skrdgraph skrdgraph merged commit 09d9293 into main Jan 30, 2023
@skrdgraph skrdgraph deleted the skrdgraph/cve_fixes branch January 30, 2023 08:10
all-seeing-code pushed a commit that referenced this pull request Feb 8, 2023
@skrdgraph @all-seeing-code
fix(sec): CVE & OS Patching (#8634)
f92c578 
## Problem
[CVE-2022-41717](https://avd.aquasec.com/nvd/cve-2022-41717)
os pinning too tight, causes out-of-date packages in our base dockerfile
(it's good to pin closer to release* to avoid variability at env layer)

## Solution
- bump net lib version
- remove dockerfile os pkg pins (and ref to latest)
all-seeing-code pushed a commit that referenced this pull request Feb 8, 2023
@skrdgraph @all-seeing-code
fix(sec): CVE & OS Patching (#8634)
9c45de1 
## Problem
[CVE-2022-41717](https://avd.aquasec.com/nvd/cve-2022-41717)
os pinning too tight, causes out-of-date packages in our base dockerfile
(it's good to pin closer to release* to avoid variability at env layer)

## Solution
- bump net lib version
- remove dockerfile os pkg pins (and ref to latest)
@MichelDiz MichelDiz added the dgraph Issue or PR created by an internal Dgraph contributor. label Mar 7, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mangalaman93 mangalaman93 mangalaman93 approved these changes

@akon-dey akon-dey Awaiting requested review from akon-dey

@darkn3rd darkn3rd Awaiting requested review from darkn3rd

@meghalims meghalims Awaiting requested review from meghalims

@matthewmcneely matthewmcneely Awaiting requested review from matthewmcneely

@billprovince billprovince Awaiting requested review from billprovince

@all-seeing-code all-seeing-code Awaiting requested review from all-seeing-code

+1 more reviewer

@joshua-goldstein joshua-goldstein joshua-goldstein approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

dgraph Issue or PR created by an internal Dgraph contributor.

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@skrdgraph @coveralls @mangalaman93 @joshua-goldstein @MichelDiz