Skip to content

Commit a74c28f

Browse files
bjee19bjee19
authored
Fix cves for pcre2 and libxml2 (#4116)
Update pcre2 and libxml2 in our base nginx docker image.
1 parent 6ac6832 commit a74c28f

File tree

1 file changed

+4
-0
lines changed

1 file changed

+4
-0
lines changed

build/Dockerfile.nginx

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,10 @@ ADD --link --chown=101:1001 https://cs.nginx.com/static/keys/nginx_signing.rsa.p
66

77
FROM nginx:1.29.2-alpine-otel
88

9+
# the following apk update and add are to address CVE-2025-58050, CVE-2025-6021/CVE-2025-49795/CVE-2025-49794/CVE-2025-49796 respectively.
10+
# once a new base image is available with these package updates, they can be removed.
11+
RUN apk update && apk add --no-cache 'pcre2>=10.46-r0' 'libxml2>=2.13.9-r0'
12+
913
# renovate: datasource=github-tags depName=nginx/agent
1014
ARG NGINX_AGENT_VERSION=v3.3.2
1115
ARG NJS_DIR

0 commit comments

Comments
 (0)