[FOLIO-3402] folioci/alpine-jre-openjdk11 not affected by polkit (CVE-2021-4034) Created: 26/Jan/22 Updated: 27/Jan/22 Resolved: 26/Jan/22 |
|
| Status: | Closed |
| Project: | FOLIO |
| Components: | None |
| Affects versions: | None |
| Fix versions: | None |
| Type: | Bug | Priority: | TBD |
| Reporter: | Julian Ladisch | Assignee: | Unassigned |
| Resolution: | Cannot Reproduce | Votes: | 0 |
| Labels: | security | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original estimate: | Not Specified | ||
| Issue links: |
|
||||||||
| Sprint: | |||||||||
| Development Team: | FOLIO DevOps | ||||||||
| RCA Group: | TBD | ||||||||
| Description |
|
folioci/alpine-jre-openjdk11 = https://github.com/folio-org/folio-tools/blob/master/folio-java-docker/openjdk11/Dockerfile Most FOLIO Java modules use this Docker image that is based on Alpine. However, our image doesn't contain the polkit Alpine package. Therefore it is not affected by this Local Privilege Escalation in polkit's pkexec: |