Fix CVE-2024-41110: update Docker base image to 27.5.1

Bogdan Tsechoevrequested to merge
fix/cve-2024-41110-docker-base-image into master

Summary

  • Update all Dockerfiles from docker:27.1.1 to docker:27.5.1 to fix CVE-2024-41110 (CRITICAL)
  • Affected files: Dockerfile.dblab-server, Dockerfile.dblab-server-debug, Dockerfile.dblab-server-zfs08, Dockerfile.dblab-cli, Dockerfile.ci-checker
  • Bundled docker-buildx and docker-compose CLI plugins now use patched github.com/docker/docker (>= v27.1.1)
  • Also eliminates CVE-2024-45491 and CVE-2024-45492 (libexpat) via Alpine 3.20 → 3.21 upgrade

Closes #679 (closed)

Merge request reports