search

vagnercardosoweb / docker-php8

Docker with php8.2+, apache, mysql, postgresql, phpmyadmin, redis, nginx and pgadmin
MIT License
139 stars 176 forks source link

Upgrade Apache 2.4.57 to 2.4.59 #16

Open vasqueeg opened 4 months ago

vasqueeg commented 4 months ago

Hello @vagnercardosoweb,

I've been flagged that the apache version (2.4.57) is vulnerable. See below:

# docker exec -ti docker.phpmyadmin /bin/bash root@292cca44242c:/var/www/html# apache2 -v Server version: Apache/2.4.57 (Debian) Server built: 2023-04-13T03:26:51

As per Ssecurty Team's recommendation, it needs to update the Apache version into 2.4.59 to mitigate this. I attempted to update the ./docker/apache/Dockerfile into FROM httpd:2.4.59-alpine but seems nothing happens after issuing a docker-compose up --build -d. But I confirm in the logs shows that my update on the Dockerfile is being read:

Building apache [+] Building 0.9s (13/13) FINISHED docker:default => [internal] load build definition from Dockerfile 0.0s => => transferring dockerfile: 695B 0.0s => [internal] load metadata for docker.io/library/httpd:2.4.59-alpine 0.8s => [internal] load .dockerignore 0.0s => => transferring context: 2B 0.0s => [1/8] FROM docker.io/library/httpd:2.4.59-alpine@sha256:68f6714169b70ca33126c46f60cc802eb602c6435f4ebf08349d871d500d3e70 0.0s => => resolve docker.io/library/httpd:2.4.59-alpine@sha256:68f6714169b70ca33126c46f60cc802eb602c6435f4ebf08349d871d500d3e70 0.0s => [internal] load build context 0.0s => => transferring context: 86B 0.0s => CACHED [2/8] RUN ln -snf /usr/share/zoneinfo/UTC /etc/localtime && echo UTC > /etc/timezone 0.0s => CACHED [3/8] RUN apk add --update --no-cache tzdata 0.0s => CACHED [4/8] WORKDIR /var/www/app 0.0s => CACHED [5/8] RUN mkdir -p /var/www/app/public_html 0.0s => CACHED [6/8] RUN chown -R www-data:www-data /var/www/app/public_html 0.0s => CACHED [7/8] RUN ln -s /var/www/app/public_html/index.php /var/www/app/public_html 0.0s => CACHED [8/8] COPY ./httpd.conf /usr/local/apache2/conf/httpd.conf 0.0s => exporting to image 0.0s => => exporting layers 0.0s => => writing image sha256:2a46e32ad4bb7cba300f74b1a3a7af69feaa35653e43496ce2ead1c7f5f5f5fd 0.0s => => naming to docker.io/library/docker-php8_apache

Any advise on how can I upgrade the Apache version on the existing container? Thank you in advance!

vagnercardosoweb commented 3 months ago

@vasqueeg Good afternoon, I will carry out a test and update the version. Thanks