Bump UBI bases image from `9.4-949` to `9.4-1134` (!4857) · Merge requests · GitLab.org / gitlab-runner

Hannes Hörl requested to merge hhoerl/bump-ubi-base-image-version into main Jul 03, 2024

What does this MR do?

Bump UBI bases image from 9.4-949 to 9.4-1134

This new image has some fixes to CVEs, most notably some high severity ones:

glibc                   2.34-100.el9                   0:2.34-100.el9_4.2  rpm   CVE-2024-33599  High
glibc                   2.34-100.el9                   0:2.34-100.el9_4.2  rpm   CVE-2024-2961   High
glibc-common            2.34-100.el9                   0:2.34-100.el9_4.2  rpm   CVE-2024-33599  High
glibc-common            2.34-100.el9                   0:2.34-100.el9_4.2  rpm   CVE-2024-2961   High
glibc-minimal-langpack  2.34-100.el9                   0:2.34-100.el9_4.2  rpm   CVE-2024-33599  High
glibc-minimal-langpack  2.34-100.el9                   0:2.34-100.el9_4.2  rpm   CVE-2024-2961   High

Why was this MR needed?

To be less vulnerable.

What's the best way to test this MR?

Once merged, run an vuln scanner against the resulting UBI images.

What are the relevant issue numbers?

No specific issue, just keeping our deps up to date, as part of checking on our CVE reports.

Bump UBI bases image from `9.4-949` to `9.4-1134`

What does this MR do?

Why was this MR needed?

What's the best way to test this MR?

What are the relevant issue numbers?

Merge request reports