Update Dockerfile for libssl3 and libcrypto3 CVE's (#3783)

* Update Dockerfile for libssl3 and libcrypto3 CVE's Out Aquasec tool reported below High Vulnarability in libssl3:3.1.0-r4 and libcrypto3:3.1.0-r4. CVE's - CVE-2023-2650 This is fixed in 3.1.1-r0 so anything greater than this version is fine, thats why updating this to latest. * Fix broken merge conflict Signed-off-by: Raffaele Di Fazio <difazio.raffaele@gmail.com> --------- Signed-off-by: Raffaele Di Fazio <difazio.raffaele@gmail.com> Co-authored-by: Raffaele Di Fazio <difazio.raffaele@gmail.com>
2026-05-05 14:46:10 +02:00 · 2023-08-06 19:52:31 +05:30 · 2023-08-06 19:52:31 +05:30 · 725cdd0465
commit 725cdd0465
parent c088c80f2c
1 changed files with 1 additions and 1 deletions
--- a/2
+++ b/2
@ -27,7 +27,7 @@ COPY . .

 FROM alpine:3.18

-RUN apk update && apk add "libcrypto3>=3.0.8-r4" "libssl3>=3.0.8-r4" && rm -rf /var/cache/apk/*
+RUN apk update && apk add "libcrypto3>=3.1.1-r0" "libssl3>=3.1.1-r0" && rm -rf /var/cache/apk/*

 COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
 COPY --from=builder /sigs.k8s.io/external-dns/build/external-dns /bin/external-dns