search

jupyterhub / zero-to-jupyterhub-k8s

Helm Chart & Documentation for deploying JupyterHub on Kubernetes
https://zero-to-jupyterhub.readthedocs.io
Other
1.56k stars 799 forks source link

Vulnerability patch in singleuser-sample #3572

Closed jupyterhub-bot closed 2 days ago

jupyterhub-bot commented 1 week ago

A rebuild of quay.io/jupyterhub/k8s-singleuser-sample has been found to influence the detected vulnerabilities! This PR will trigger a rebuild because it has updated a comment in the Dockerfile.

About

This scan for known vulnerabilities has been made by aquasecurity/trivy. Trivy was configured to filter the vulnerabilities with the following settings:

Before

Before trying to rebuild the image, the following vulnerabilities was detected in quay.io/jupyterhub/k8s-singleuser-sample:4.0.1-0.dev.git.6864.hfc323db4.

Target Vuln. ID Package Name Installed v. Fixed v.
debian CVE-2023-7104 libsqlite3-0 3.40.1-2 3.40.1-2+deb12u1
debian CVE-2024-28182 libnghttp2-14 1.52.0-1+deb12u1 1.52.0-1+deb12u2
debian CVE-2024-5535 libssl3 3.0.14-1~deb12u2 3.0.15-1~deb12u1
debian CVE-2024-5535 openssl 3.0.14-1~deb12u2 3.0.15-1~deb12u1
debian CVE-2024-8096 libcurl3-gnutls 7.88.1-10+deb12u7 7.88.1-10+deb12u8
debian CVE-2024-9143 libssl3 3.0.14-1~deb12u2 3.0.15-1~deb12u1
debian CVE-2024-9143 openssl 3.0.14-1~deb12u2 3.0.15-1~deb12u1

After

Target Vuln. ID Package Name Installed v. Fixed v.