Fix CVE CVE-2023-1255

2023-04-21 09:44:27 +02:00 · 2023-04-21 09:44:27 +02:00 · 63b1fb947a
parent d5b11b8bb1
commit 63b1fb947a
4 changed files with 12 additions and 0 deletions
--- a/src/autoconf/Dockerfile
+++ b/src/autoconf/Dockerfile
@ -53,6 +53,9 @@ RUN apk add --no-cache bash && \
    chown root:nginx /var/log/letsencrypt /var/lib/letsencrypt && \
    chmod 770 /var/log/letsencrypt /var/lib/letsencrypt

+# Fix CVEs
+RUN apk add "libcrypto3>=3.0.8-r4" "libssl3>=3.0.8-r4"
+
 VOLUME /data /etc/nginx

 WORKDIR /usr/share/bunkerweb/autoconf
--- a/src/bw/Dockerfile
+++ b/src/bw/Dockerfile
@ -72,6 +72,9 @@ RUN apk add --no-cache pcre bash python3 && \
 	ln -s /proc/1/fd/1 /var/log/nginx/access.log && \
 	ln -s /proc/1/fd/1 /var/log/nginx/jobs.log

+# Fix CVEs
+RUN apk add "libcrypto3>=3.0.8-r4" "libssl3>=3.0.8-r4"
+
 VOLUME /data /etc/nginx

 EXPOSE 8080/tcp 8443/tcp
--- a/src/scheduler/Dockerfile
+++ b/src/scheduler/Dockerfile
@ -63,6 +63,9 @@ RUN apk add --no-cache bash libgcc libstdc++ openssl && \
  ln -s /proc/1/fd/1 /var/log/letsencrypt/letsencrypt.log && \
  chmod 660 /usr/share/bunkerweb/INTEGRATION

+# Fix CVEs
+RUN apk add "libcrypto3>=3.0.8-r4" "libssl3>=3.0.8-r4"
+
 VOLUME /data /etc/nginx

 WORKDIR /usr/share/bunkerweb/scheduler
--- a/src/ui/Dockerfile
+++ b/src/ui/Dockerfile
@ -49,6 +49,9 @@ RUN apk add --no-cache bash && \
    chmod 750 /usr/share/bunkerweb/gen/*.py /usr/share/bunkerweb/ui/*.py /usr/share/bunkerweb/ui/src/*.py /usr/share/bunkerweb/deps/python/bin/* && \
    chmod 660 /usr/share/bunkerweb/INTEGRATION

+# Fix CVEs
+RUN apk add "libcrypto3>=3.0.8-r4" "libssl3>=3.0.8-r4"
+
 VOLUME /data /etc/nginx

 EXPOSE 7000