Skip to:

Skip to Jira Navigation
Skip to Side Navigation
Skip to Main Content

folioci/alpine-jre-openjdk11 not affected by polkit (CVE-2021-4034)

Description

folioci/alpine-jre-openjdk11 = https://github.com/folio-org/folio-tools/blob/master/folio-java-docker/openjdk11/Dockerfile

Most FOLIO Java modules use this Docker image that is based on Alpine.

However, our image doesn't contain the polkit Alpine package.

Therefore it is not affected by this Local Privilege Escalation in polkit's pkexec:
https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt
https://security.alpinelinux.org/srcpkg/polkit

CSP Request Details

None

CSP Rejection Details

None

Potential Workaround

None

Linked issues

relates to

jenkins-slave not affected by polkit (CVE-2021-4034)

Checklist

hide

TestRail: Results

Activity

Show:

Cannot Reproduce

Details

Assignee

Unassigned

Reporter

Julian Ladisch

Labels

Priority

TBD

Development Team

FOLIO DevOps

RCA Group

TBD

TestRail: Cases

Open TestRail: Cases

TestRail: Runs

Open TestRail: Runs

Created January 26, 2022 at 3:44 PM

Updated January 27, 2022 at 4:31 PM

Resolved January 26, 2022 at 4:00 PM

TestRail: Cases

TestRail: Runs