kubernetes-csi/csi-driver-nfs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #316 from andyzhangx/CVE-2022-1271

Browse Source 
fix: CVE-2022-1271 in image build
This commit is contained in:
Kubernetes Prow Robot 2022-04-21 02:12:58 -07:00 committed by GitHub
commit 9aeed81815
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
Dockerfile
View File

@ -12,15 +12,12 @@
# See the License for the specific language governing permissions and # See the License for the specific language governing permissions and
# limitations under the License. # limitations under the License.
FROM k8s.gcr.io/build-image/debian-base:bullseye-v1.1.0 FROM k8s.gcr.io/build-image/debian-base:bullseye-v1.2.0
ARG ARCH ARG ARCH
ARG binary=./bin/${ARCH}/nfsplugin ARG binary=./bin/${ARCH}/nfsplugin
COPY ${binary} /nfsplugin COPY ${binary} /nfsplugin
RUN apt update && apt-mark unhold libcap2 RUN apt update && apt upgrade -y && apt-mark unhold libcap2 && clean-install ca-certificates mount nfs-common netbase
RUN clean-install ca-certificates mount nfs-common netbase
# install updated packages to fix CVE issues
RUN clean-install libgmp10 bsdutils libssl1.1 openssl libc6 libc-bin libsystemd0 libudev1 zlib1g
ENTRYPOINT ["/nfsplugin"] ENTRYPOINT ["/nfsplugin"]