You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@zookeeper.apache.org by GitBox <gi...@apache.org> on 2022/09/27 02:22:21 UTC

[GitHub] [zookeeper] hangc0276 opened a new pull request, #1927: ZOOKEEPER-4616: Upgrade docker image to resolve CVEs

hangc0276 opened a new pull request, #1927:
URL: https://github.com/apache/zookeeper/pull/1927

   The current docker image `maven:3.6.3-jdk-8` has many critical security issues.
   
   maven@3.6.3-jdk-8 › dpkg@1.19.7 has [CVE-2022-1664](https://www.cve.org/CVERecord?id=CVE-2022-1664)
   
   maven@3.6.3-jdk-8 › openssl@1.1.1d-0+deb10u6 has [CVE-2021-3711](https://www.cve.org/CVERecord?id=CVE-2021-3711)
   
   maven@3.6.3-jdk-8 › gzip@1.9-3 has [CVE-2022-1271](https://www.cve.org/CVERecord?id=CVE-2022-1271)
   
   We need to upgrade the docker base image to version `maven:3.8.4-jdk-8`
   
   See [ZOOKEEPER-4616](https://issues.apache.org/jira/browse/ZOOKEEPER-4616) for full details.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@zookeeper.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [zookeeper] sonatype-lift[bot] commented on pull request #1927: ZOOKEEPER-4616: Upgrade docker image to resolve CVEs

Posted by GitBox <gi...@apache.org>.

sonatype-lift[bot] commented on PR #1927:
URL: https://github.com/apache/zookeeper/pull/1927#issuecomment-1258886187

   :warning: **52 God Classes** were detected by Lift in this project. [Visit the Lift web console](https://lift.sonatype.com/results/github.com/apache/zookeeper/01GDYC171FNAWN9CQZERXNAQ0P?tab=technical-debt&utm_source=github.com&utm_campaign=lift-comment&utm_content=apache\%20zookeeper) for more details.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@zookeeper.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [zookeeper] eolivelli closed pull request #1927: ZOOKEEPER-4616: Upgrade docker image to resolve CVEs

Posted by GitBox <gi...@apache.org>.

eolivelli closed pull request #1927: ZOOKEEPER-4616: Upgrade docker image to resolve CVEs
URL: https://github.com/apache/zookeeper/pull/1927


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@zookeeper.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org