We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Docker image version: hashicorp/consul-template:0.22.0-alpine
Show vulnerabilities in curl to 2 CVEs (see below).
Any chance of a rebuild and publish to DockerHub to pick up the latest curl version from apk ?
Resource: curl Description: Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3. Fix Version: None Aqua Score: 7.5 High NVD Score (CVSS v2) 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) NVD Reference: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-5481 Vendor Score (CVSS v2) 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Resource curl Description: Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3. Fix Version: None Aqua Score: 7.5 High NVD Score (CVSS v2) 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) NVD Reference: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-5482 Vendor Score (CVSS v2) 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
The text was updated successfully, but these errors were encountered:
Just released 0.22.1, which fixes this.
Sorry, something went wrong.
No branches or pull requests
Docker image version: hashicorp/consul-template:0.22.0-alpine
Show vulnerabilities in curl to 2 CVEs (see below).
Any chance of a rebuild and publish to DockerHub to pick up the latest curl version from apk ?
The text was updated successfully, but these errors were encountered: