Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(sec): CVE & OS Patching #8634

Merged
merged 3 commits into from
Jan 30, 2023
Merged

fix(sec): CVE & OS Patching #8634

merged 3 commits into from
Jan 30, 2023

Conversation

skrdgraph
Copy link
Contributor

@skrdgraph skrdgraph commented Jan 29, 2023
edited
Loading

Problem

CVE-2022-41717
os pinning too tight, causes out-of-date packages in our base dockerfile (it's good to pin closer to release* to avoid variability at env layer)

Solution

  • bump net lib version
  • remove dockerfile os pkg pins (and ref to latest)

@skrdgraph skrdgraph marked this pull request as ready for review January 29, 2023 09:04
@skrdgraph skrdgraph changed the title fix(sec): CVE-2022-41717 fix(sec): CVE & OS Patching Jan 29, 2023
@coveralls
Copy link

coveralls commented Jan 29, 2023
edited
Loading

Coverage Status

Coverage: 66.661% (-0.4%) from 67.088% when pulling 9eab755 on skrdgraph/cve_fixes into 09a8e45 on main.

@skrdgraph skrdgraph merged commit 09d9293 into main Jan 30, 2023
@skrdgraph skrdgraph deleted the skrdgraph/cve_fixes branch January 30, 2023 08:10
all-seeing-code pushed a commit that referenced this pull request Feb 8, 2023
@skrdgraph @all-seeing-code
fix(sec): CVE & OS Patching (#8634)
f92c578 
## Problem
[CVE-2022-41717](https://avd.aquasec.com/nvd/cve-2022-41717)
os pinning too tight, causes out-of-date packages in our base dockerfile
(it's good to pin closer to release* to avoid variability at env layer)

## Solution
- bump net lib version
- remove dockerfile os pkg pins (and ref to latest)
all-seeing-code pushed a commit that referenced this pull request Feb 8, 2023
@skrdgraph @all-seeing-code
fix(sec): CVE & OS Patching (#8634)
9c45de1 
## Problem
[CVE-2022-41717](https://avd.aquasec.com/nvd/cve-2022-41717)
os pinning too tight, causes out-of-date packages in our base dockerfile
(it's good to pin closer to release* to avoid variability at env layer)

## Solution
- bump net lib version
- remove dockerfile os pkg pins (and ref to latest)
@MichelDiz MichelDiz added the dgraph Issue or PR created by an internal Dgraph contributor. label Mar 7, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@joshua-goldstein joshua-goldstein joshua-goldstein approved these changes

@mangalaman93 mangalaman93 mangalaman93 approved these changes

@akon-dey akon-dey Awaiting requested review from akon-dey

@darkn3rd darkn3rd Awaiting requested review from darkn3rd

@meghalims meghalims Awaiting requested review from meghalims

@matthewmcneely matthewmcneely Awaiting requested review from matthewmcneely

@billprovince billprovince Awaiting requested review from billprovince

@all-seeing-code all-seeing-code Awaiting requested review from all-seeing-code

Assignees
No one assigned
Labels
dgraph Issue or PR created by an internal Dgraph contributor.
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@skrdgraph @coveralls @mangalaman93 @joshua-goldstein @MichelDiz