You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@trafficserver.apache.org by ki...@apache.org on 2022/08/31 07:46:01 UTC
[trafficserver-ingress-controller] branch master updated: fix cve-2022-3209 (#139)
This is an automated email from the ASF dual-hosted git repository.
kichan pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/trafficserver-ingress-controller.git
The following commit(s) were added to refs/heads/master by this push:
new e72a1ba fix cve-2022-3209 (#139)
e72a1ba is described below
commit e72a1ba1a821155a40041d1a1eeef99f0eef7932
Author: Kit Chan <ki...@apache.org>
AuthorDate: Wed Aug 31 00:45:57 2022 -0700
fix cve-2022-3209 (#139)
---
Dockerfile | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/Dockerfile b/Dockerfile
index 0840c42..b3f9f4f 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -24,7 +24,7 @@ RUN apk add --no-cache --virtual .tools \
RUN apk add --no-cache --virtual .ats-build-deps \
build-base openssl-dev tcl-dev pcre-dev zlib-dev \
libexecinfo-dev linux-headers libunwind-dev \
- brotli-dev jansson-dev luajit-dev readline-dev geoip-dev
+ brotli-dev jansson-dev luajit-dev readline-dev geoip-dev libxml2-dev=2.9.14-r1
RUN apk add --no-cache --virtual .ats-extra-build-deps --repository https://dl-cdn.alpinelinux.org/alpine/edge/community hwloc-dev
@@ -139,7 +139,8 @@ RUN apk add --no-cache -U \
tcl \
openrc \
inotify-tools \
- cpulimit
+ cpulimit \
+ libxml2=2.9.14-r1
RUN apk add --no-cache -U --repository https://dl-cdn.alpinelinux.org/alpine/edge/community hwloc