Commit 36f79ee
Upgrade Alpine base image to 3.22 to fix OpenSSL CVE (#727)
Updates deployment-operator Dockerfile FROM alpine:3.21 to alpine:3.22
to address OpenSSL vulnerability (CVE: NULL pointer dereference in CMS
EnvelopedData processing).
This upgrade brings libcrypto3 from 3.3.6-r0 to 3.5.6-r0, which includes
the required security fix (3.3.7-r0+) for the vulnerability affecting
CMS_decrypt() operations on untrusted input.
Verified: Docker build successful with libcrypto3 3.5.6-r0 installed.
Co-authored-by: Michael Guarino <mjg@plural.sh>1 parent ae8db82 commit 36f79ee
1 file changed
Lines changed: 1 addition & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
28 | 28 | | |
29 | 29 | | |
30 | 30 | | |
31 | | - | |
| 31 | + | |
32 | 32 | | |
33 | 33 | | |
34 | 34 | | |
| |||
0 commit comments