[Snyk] Security upgrade debian from buster-slim to 10.12-slim #8

Open

arno.birchler wants to merge 1 commit from snyk-fix-67b227d3fa4cb96935bdf5908f02b622 into master

pull from: snyk-fix-67b227d3fa4cb96935bdf5908f02b622

merge into: self-healing-infrastructure:master

self-healing-infrastructure:master

self-healing-infrastructure:snyk-fix-bd4504afbed2866939cb6ff6c8ff3f2e

self-healing-infrastructure:snyk-fix-e4fa1bff630bb85974b25f2abc1ab9ed

self-healing-infrastructure:snyk-fix-e77e5e66cdd809fb229efdc874b6b935

self-healing-infrastructure:snyk-fix-17c97c82abefd3624d1424a5da220122

self-healing-infrastructure:snyk-fix-c929b32ee9385cb9d968c5e044306108

self-healing-infrastructure:snyk-fix-fdc6ccf64e9902d76e1b9fc52d7cbef0

self-healing-infrastructure:snyk-fix-d64dfef9ae1ef5fc4b31bb746c2a2f5b

self-healing-infrastructure:snyk-fix-cba4473da2480e812be90aaca918d557

self-healing-infrastructure:snyk-fix-b180755e1e6231a13402296c54427493

self-healing-infrastructure:develop

self-healing-infrastructure:snyk-fix-67c74d7039a8e48a7cc152bdc758d1d3

self-healing-infrastructure:feature/validate-compose

Conversation 0 Commits 1 Files changed 1 +1 -1

arno.birchler commented 2022-05-29 09:27:54 +00:00 (Migrated from gitlab.com)

Copy link

Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Changes included in this Merge Request

• Dockerfile

We recommend upgrading to debian:10.12-slim, as this image has only 70 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Some of the most important vulnerabilities in your base image include:

Severity	Issue	Exploit Maturity
	CVE-2022-1664 SNYK-DEBIAN10-DPKG-2847944	No Known Exploit
	Information Exposure SNYK-DEBIAN10-GCC8-347558	No Known Exploit
	Information Exposure SNYK-DEBIAN10-GCC8-347558	No Known Exploit
	Information Exposure SNYK-DEBIAN10-GCC8-347558	No Known Exploit
	Information Exposure SNYK-DEBIAN10-UTILLINUX-2401082	No Known Exploit

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image. #### Changes included in this Merge Request - Dockerfile We recommend upgrading to `debian:10.12-slim`, as this image has only 70 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected. Some of the most important vulnerabilities in your base image include: | Severity | Issue | Exploit Maturity | | :------: | :---- | :--------------- | |  | CVE-2022-1664 <br/>[SNYK-DEBIAN10-DPKG-2847944](https://snyk.io/vuln/SNYK-DEBIAN10-DPKG-2847944) | No Known Exploit | |  | Information Exposure <br/>[SNYK-DEBIAN10-GCC8-347558](https://snyk.io/vuln/SNYK-DEBIAN10-GCC8-347558) | No Known Exploit | |  | Information Exposure <br/>[SNYK-DEBIAN10-GCC8-347558](https://snyk.io/vuln/SNYK-DEBIAN10-GCC8-347558) | No Known Exploit | |  | Information Exposure <br/>[SNYK-DEBIAN10-GCC8-347558](https://snyk.io/vuln/SNYK-DEBIAN10-GCC8-347558) | No Known Exploit | |  | Information Exposure <br/>[SNYK-DEBIAN10-UTILLINUX-2401082](https://snyk.io/vuln/SNYK-DEBIAN10-UTILLINUX-2401082) | No Known Exploit | --- **Note:** _You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs._ For more information: <img src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiI4MzNkYWVmNi02OWFiLTQwODYtYjc0OC05NmRmODhlMDBjMGQiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6IjgzM2RhZWY2LTY5YWItNDA4Ni1iNzQ4LTk2ZGY4OGUwMGMwZCJ9fQ==" width="0" height="0"/> 🧐 [View latest project report](https://app.snyk.io/org/arnobirchler/project/b255abee-d401-4fa0-b583-675359159a72?utm_source&#x3D;gitlab&amp;utm_medium&#x3D;referral&amp;page&#x3D;fix-pr) 🛠 [Adjust project settings](https://app.snyk.io/org/arnobirchler/project/b255abee-d401-4fa0-b583-675359159a72?utm_source&#x3D;gitlab&amp;utm_medium&#x3D;referral&amp;page&#x3D;fix-pr/settings) [//]: # 'snyk:metadata:{"prId":"833daef6-69ab-4086-b748-96df88e00c0d","prPublicId":"833daef6-69ab-4086-b748-96df88e00c0d","dependencies":[{"name":"debian","from":"buster-slim","to":"10.12-slim"}],"packageManager":"dockerfile","projectPublicId":"b255abee-d401-4fa0-b583-675359159a72","projectUrl":"https://app.snyk.io/org/arnobirchler/project/b255abee-d401-4fa0-b583-675359159a72?utm_source=gitlab&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-DEBIAN10-DPKG-2847944","SNYK-DEBIAN10-GCC8-347558","SNYK-DEBIAN10-UTILLINUX-2401082"],"upgrade":["SNYK-DEBIAN10-DPKG-2847944","SNYK-DEBIAN10-GCC8-347558","SNYK-DEBIAN10-GCC8-347558","SNYK-DEBIAN10-GCC8-347558","SNYK-DEBIAN10-UTILLINUX-2401082"],"isBreakingChange":false,"env":"prod","prType":"fix","templateVariants":["updated-fix-title"],"priorityScoreList":[null,400,150]}' --- **Learn how to fix vulnerabilities with free interactive lessons:** 🦉 [Learn about vulnerability in an interactive lesson of Snyk Learn.](https://learn.snyk.io?loc&#x3D;fix-pr)

This pull request can be merged automatically.

You are not authorized to merge this pull request.

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin snyk-fix-67b227d3fa4cb96935bdf5908f02b622:snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git switch snyk-fix-67b227d3fa4cb96935bdf5908f02b622

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch master

git merge --no-ff snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git switch snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git rebase master

git switch master

git merge --ff-only snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git switch snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git rebase master

git switch master

git merge --no-ff snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git switch master

git merge --squash snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git switch master

git merge --ff-only snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git switch master

git merge snyk-fix-67b227d3fa4cb96935bdf5908f02b622

git push origin master

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

self-healing-infrastructure/core!8

No description provided.