Skip to content

[Snyk] Security upgrade nginx from 1.11 to 1.23.0#141

Open
snyk-bot wants to merge 1 commit intomasterfrom
snyk-fix-9f201baea4cac1aca02648c04805ce4c
Open

[Snyk] Security upgrade nginx from 1.11 to 1.23.0#141
snyk-bot wants to merge 1 commit intomasterfrom
snyk-fix-9f201baea4cac1aca02648c04805ce4c

Conversation

@snyk-bot
Copy link

@snyk-bot snyk-bot commented Jul 21, 2022

Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Changes included in this PR

  • cluster/addons/registry/images/Dockerfile

We recommend upgrading to nginx:1.23.0, as this image has only 93 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Some of the most important vulnerabilities in your base image include:

Severity Priority Score / 1000 Issue Exploit Maturity
critical severity 714 XML External Entity (XXE) Injection
SNYK-DEBIAN8-LIBXML2-429309		 No Known Exploit
critical severity 714 Out-of-Bounds
SNYK-DEBIAN8-LIBXML2-429454		 No Known Exploit
critical severity 714 Out-of-Bounds
SNYK-DEBIAN8-LIBXML2-429716		 No Known Exploit
critical severity 714 Out-of-bounds Write
SNYK-DEBIAN8-PERL-327620		 No Known Exploit
high severity 786 Out-of-bounds Write
SNYK-DEBIAN8-PROCPS-309313		 Mature

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@snyk-bot