-
Notifications
You must be signed in to change notification settings - Fork 25
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Snyk] Security upgrade nginx from 1.25.1 to 1.27 #3373
Conversation
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-5927132 - https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-5927132 - https://snyk.io/vuln/SNYK-DEBIAN12-LIBWEBP-5893095 - https://snyk.io/vuln/SNYK-DEBIAN12-NGHTTP2-5953379 - https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-6210098
Quality Gate passedIssues Measures |
Code Climate has analyzed commit 0301a7c and detected 0 issues on this pull request. View more on Code Climate. |
Quality Gate passedIssues Measures |
@@ -1,4 +1,4 @@ | |||
FROM nginx:1.27.1 | |||
FROM nginx:1.27 |
Check failure
Code scanning / Snyk Container
Critical severity - Cleartext Transmission of Sensitive Information vulnerability in curl Critical
@@ -1,4 +1,4 @@ | |||
FROM nginx:1.27.1 | |||
FROM nginx:1.27 |
Check failure
Code scanning / Snyk Container
Critical severity - Out-of-bounds Write vulnerability in curl Critical
@@ -1,4 +1,4 @@ | |||
FROM nginx:1.27.1 | |||
FROM nginx:1.27 |
Check failure
Code scanning / Snyk Container
Critical severity - Out-of-bounds Read vulnerability in db5.3 Critical
@@ -1,4 +1,4 @@ | |||
FROM nginx:1.27.1 | |||
FROM nginx:1.27 |
Check failure
Code scanning / Snyk Container
Critical severity - Integer Overflow or Wraparound vulnerability in expat Critical
@@ -1,4 +1,4 @@ | |||
FROM nginx:1.27.1 | |||
FROM nginx:1.27 |
Check failure
Code scanning / Snyk Container
Critical severity - Integer Overflow or Wraparound vulnerability in expat Critical
@@ -1,4 +1,4 @@ | |||
FROM nginx:1.27.1 | |||
FROM nginx:1.27 |
Check failure
Code scanning / Snyk Container
Critical severity - XML External Entity (XXE) Injection vulnerability in expat Critical
@@ -1,4 +1,4 @@ | |||
FROM nginx:1.27.1 | |||
FROM nginx:1.27 |
Check failure
Code scanning / Snyk Container
Critical severity - CVE-2024-37371 vulnerability in krb5 Critical
@@ -1,4 +1,4 @@ | |||
FROM nginx:1.27.1 | |||
FROM nginx:1.27 |
Check failure
Code scanning / Snyk Container
Critical severity - Integer Overflow or Wraparound vulnerability in zlib Critical
This PR was automatically created by Snyk using the credentials of a real user.
![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)
Snyk has created this PR to fix 4 vulnerabilities in the dockerfile dependencies of this project.
Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.
Snyk changed the following file(s):
kubernetes/nginx/Dockerfile
We recommend upgrading to
nginx:1.27
, as this image has only 93 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.Vulnerabilities that will be fixed with an upgrade:
SNYK-DEBIAN12-GLIBC-5927132
SNYK-DEBIAN12-GLIBC-5927132
SNYK-DEBIAN12-LIBWEBP-5893095
SNYK-DEBIAN12-NGHTTP2-5953379
SNYK-DEBIAN12-GLIBC-6210098
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Resource Exhaustion