Upgrade to Alpine 3.18.2 to address OpenSSL CVEs

[frankgrimes97]

The last published Liberica Alpine docker image appears to still be using Alpine 3.18.0:

$ docker run -it bellsoft/liberica-openjdk-alpine:20
Unable to find image 'bellsoft/liberica-openjdk-alpine:20' locally
20: Pulling from bellsoft/liberica-openjdk-alpine
8a49fdb3b6a5: Pull complete 
bd77b4301f50: Pull complete 
702c8f9bd880: Pull complete 
Digest: sha256:7d759ac063c6a2b202203ca41f1bd34d2d5b87178479ee27734c31255b51e3c2
Status: Downloaded newer image for bellsoft/liberica-openjdk-alpine:20
/ # cat /etc/alpine-release 
3.18.0

Alpine 3.18.2 was recently released: https://alpinelinux.org/posts/Alpine-3.15.9-3.16.6-3.17.4-3.18.2-released.html It includes fixes for the following two OpenSSL CVEs:

• CVE-2023-1255
• CVE-2023-2650

$ docker run -it alpine:3.18
Unable to find image 'alpine:3.18' locally
3.18: Pulling from library/alpine
31e352740f53: Pull complete 
Digest: sha256:82d1e9d7ed48a7523bdebc18cf6290bdb97b82302a8a9c27d4fe885949ea94d1
Status: Downloaded newer image for alpine:3.18
/ # cat /etc/alpine-release 
3.18.2

[nguoianphu]

Waiting for this fix!

[morgion]

Thanks for information!

New images with new LibericaJDK and latest Alpine images have been pushed to the Dockerhub:

docker run -it --rm bellsoft/liberica-openjdk-alpine:20
Unable to find image 'bellsoft/liberica-openjdk-alpine:20' locally
20: Pulling from bellsoft/liberica-openjdk-alpine
31e352740f53: Pull complete 
c7a74e07fe28: Pull complete 
e54bc035902a: Pull complete 
Digest: sha256:d167d993577dbbb40e21f4f7928df66196cd2cbf1e4d006bbcf94f0d610ab6ac
Status: Downloaded newer image for bellsoft/liberica-openjdk-alpine:20
/ # java -version
openjdk version "20.0.2" 2023-07-18
OpenJDK Runtime Environment (build 20.0.2+10)
OpenJDK 64-Bit Server VM (build 20.0.2+10, mixed mode)
/ # more /etc/alpine-release 
3.18.2