chore: update debian-iptables to buster-v1.6.7 (Azure#1160)

Signed-off-by: GitHub <noreply@github.com>
adobe-platform · Sep 30, 2021 · 681aed9 · 681aed9
1 parent 99154ef
commit 681aed9
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/Dockerfile b/Dockerfile
@@ -17,9 +17,8 @@ RUN export GOOS=$TARGETOS && \
     export GOARM=$(echo ${TARGETPLATFORM} | cut -d / -f3 | tr -d 'v') && \
     make build
 
-FROM k8s.gcr.io/build-image/debian-iptables:buster-v1.6.6 AS nmi
-# upgrading libssl1.1 due to CVE-2021-33910 and CVE-2021-3712
-RUN clean-install ca-certificates libssl1.1
+FROM k8s.gcr.io/build-image/debian-iptables:buster-v1.6.7 AS nmi
+RUN clean-install ca-certificates
 COPY --from=builder /go/src/github.com/Azure/aad-pod-identity/bin/aad-pod-identity/nmi /bin/
 RUN useradd -u 10001 nonroot
 USER nonroot

diff --git a/test/e2e/framework/iptables/iptables_helpers.go b/test/e2e/framework/iptables/iptables_helpers.go
@@ -1,3 +1,4 @@
+//go:build e2e
 // +build e2e
 
 package iptables
@@ -78,7 +79,7 @@ func WaitForRules(input WaitForRulesInput) {
 						Containers: []corev1.Container{
 							{
 								Name:  busybox,
-								Image: "k8s.gcr.io/build-image/debian-iptables:buster-v1.6.6",
+								Image: "k8s.gcr.io/build-image/debian-iptables:buster-v1.6.7",
 								Stdin: true,
 								Command: []string{
 									"sleep",