Vulnerability patch in hub

[jupyterhub-bot]

A rebuild of quay.io/jupyterhub/k8s-hub has been found to influence the detected vulnerabilities! This PR will trigger a rebuild because it has updated a comment in the Dockerfile.

About

This scan for known vulnerabilities has been made by aquasecurity/trivy. Trivy was configured to filter the vulnerabilities with the following settings:

• ignore-unfixed: true

Before

Before trying to rebuild the image, the following vulnerabilities was detected in quay.io/jupyterhub/k8s-hub:4.0.0-0.dev.git.6671.h1de7d9be.

Target	Vuln. ID	Package Name	Installed v.	Fixed v.
debian	CVE-2024-1737	bind9-dnsutils	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-1737	bind9-host	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-1737	bind9-libs	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-1737	dnsutils	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-1975	bind9-dnsutils	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-1975	bind9-host	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-1975	bind9-libs	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-1975	dnsutils	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-4076	bind9-dnsutils	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-4076	bind9-host	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-4076	bind9-libs	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	CVE-2024-4076	dnsutils	1:9.18.24-1	1:9.18.28-1~deb12u1
debian	DSA-5734-2	bind9-dnsutils	1:9.18.24-1	1:9.18.28-1~deb12u2
debian	DSA-5734-2	bind9-host	1:9.18.24-1	1:9.18.28-1~deb12u2
debian	DSA-5734-2	bind9-libs	1:9.18.24-1	1:9.18.28-1~deb12u2
debian	DSA-5734-2	dnsutils	1:9.18.24-1	1:9.18.28-1~deb12u2
node-pkg	CVE-2024-38999	requirejs	2.3.6	2.3.7
python-pkg	CVE-2024-6345	setuptools	65.5.1	70.0.0

After

Target	Vuln. ID	Package Name	Installed v.	Fixed v.
node-pkg	CVE-2024-38999	requirejs	2.3.6	2.3.7
python-pkg	CVE-2024-6345	setuptools	65.5.1	70.0.0