Skip to content

Commit bc6da23

Browse files
moshemoradmoshemorad
committed
Patch cves
1 parent 70a1eac commit bc6da23

2 files changed

Lines changed: 5 additions & 5 deletions

File tree

Dockerfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -86,8 +86,8 @@ RUN rm -rf /usr/local/lib/python3.11/ensurepip/_bundled/setuptools-65.5.0-py3-no
8686
RUN rm -rf /usr/local/lib/python3.11/site-packages/setuptools-65.5.1.dist-info
8787

8888
# Patching CVE-2026-24049 (High): wheel path traversal vulnerability
89-
RUN pip3 install --no-cache-dir "wheel>=0.46.2" \
90-
&& rm -rf /usr/local/lib/python3.11/site-packages/setuptools/_vendor/wheel* \
89+
# Patching CVE-2026-23949 (High): jaraco.context path traversal vulnerability (vendored in setuptools)
90+
RUN pip3 install --no-cache-dir "wheel>=0.46.2" "setuptools>=80.10.1" \
9191
&& rm -rf /usr/local/lib/python3.11/site-packages/setuptools/_vendor/wheel-0.45.1.dist-info
9292

9393
COPY --from=builder /app/venv /venv

poetry.lock

Lines changed: 3 additions & 3 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)