Issue #149 two more security patches for nut-upsd

instantlinux · Apr 25, 2024 · 28854fd · 28854fd
1 parent d7c058b
commit 28854fd
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 1 deletion.
diff --git a/.image-gitlab-ci.yml b/.image-gitlab-ci.yml
@@ -58,6 +58,7 @@ security_scan_trivy:
       --exit-code 0 --format table --output medium-vulns.txt
   - cat medium-vulns.txt
   - echo CVE-2023-2253 > .trivyignore
+  - echo If next step fails, see details in gl-container-scanning artifact
   - trivy image "${REGISTRY}/${IMAGE}:${TAG}"
   cache:
     paths: [ .trivycache ]

diff --git a/images/nut-upsd/Dockerfile b/images/nut-upsd/Dockerfile
@@ -32,7 +32,8 @@ RUN echo '@edge http://dl-cdn.alpinelinux.org/alpine/edge/community' \
       >>/etc/apk/repositories && \
     apk add --no-cache dash@edgemain && \
     apk add --update --no-cache nut@edge=$NUT_VERSION \
-      busybox@edgemain linux-pam@edgemain \
+      busybox@edgemain linux-pam@edgemain util-linux@edgemain \
+      xz-libs@edgemain \
       libcrypto3@edgemain libssl3@edgemain \
       libusb musl net-snmp-libs util-linux