docker-nginx-unprivileged icon indicating copy to clipboard operation
docker-nginx-unprivileged copied to clipboard

Published 20 hours ago verified publisher icon nginxinc

Update to alpine 3.19

Open kobbi-strike opened this issue 4 months ago • 1 comments

Proposed changes

Update to Alpine 3.19 to resolve few CVEs

CVE-2023-45853
CVE-2022-37434
CVE-2018-25032

https://security.alpinelinux.org/srcpkg/zlib

Checklist

Before creating a PR, run through this checklist and mark each as complete:

  • [ x] I have read the CONTRIBUTING document
  • [ x] I have run ./update.sh and ensured all entrypoint/Dockerfile template changes have been applied to the relevant image entrypoint scripts & Dockerfiles
  • [ x] I have tested that the NGINX Unprivileged Docker images build and run correctly on all supported architectures on an unprivileged environment (check out the README for more details)
  • [ x] I have updated any relevant documentation (README)

kobbi-strike avatar Mar 11 '24 12:03 kobbi-strike

Hey @kobbi-strike! This image is a port of the upstream Docker NGINX repo so the base images are not going to be updated until the upstream images are updated. I'll keep the PR open for the time being 😄

alessfg avatar Mar 11 '24 13:03 alessfg

Hey again! Due to various changes to the images throughout the latest update I ended up including the update to Alpine 3.19 in those changes. Sorry I couldn't merge the PR! On the flip side, all images now run on Alpine 3.19 😄

alessfg avatar May 07 '24 17:05 alessfg