force musl 1.1.24-r10 to address CVE

f4ab6678 · David Rader · 5c696342 · f4ab6678 · f4ab6678
Commit f4ab6678 authored Nov 23, 2020 by David Rader
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 1 deletion

app/Dockerfile app/Dockerfile +2 -0

app/version.json app/version.json +1 -1

No files found.
--- a/app/Dockerfile
+++ b/app/Dockerfile
@@ -16,6 +16,8 @@ WORKDIR /var/www/localhost/htdocs

 RUN apk add --no-cache                                                  \
    tzdata                                                              \
+    # lighttpd requires musl, musl 1.1.24-r8 has a CVE, use 1.1.24-r10  \
+    musl=1.1.24-r10                                                     \
    lighttpd                                                            \
    rsyslog                                                             \
  # set timezone                                                        \

--- a/app/version.json
+++ b/app/version.json
-"version": "1.19.2",
+"version": "1.19.3",
 "created": "2015-12-05",
 "modified": "2020-11-23"