diff --git a/doc/changes/changes_7.0.0.md b/doc/changes/changes_7.0.0.md index be7fe54d..55ca8e46 100644 --- a/doc/changes/changes_7.0.0.md +++ b/doc/changes/changes_7.0.0.md @@ -33,5 +33,6 @@ n/a - #805: Upgraded r-4-minimal flavor to R 4.3 and Ubuntu 22.04 - #806: Removed flavor python-3.7-minimal-EXASOL-6.2.0 - #807: Removed flavor standard-EXASOL-7.0.0 - - #827: Update packages and ignore kernel CVEs - - #831: Update conda flavors to cryptography 41.0.3 and openssl 3.1.2 + - #827: Updated packages and ignore kernel CVEs + - #831: Updated conda flavors to cryptography 41.0.3 and openssl 3.1.2 + - #839: Updated dependencies and ignore kernel CVEs diff --git a/doc/changes/package_diffs/7.0.0/r-4-minimal-EXASOL-6.2.0/build_deps/apt_get_packages_diff.md b/doc/changes/package_diffs/7.0.0/r-4-minimal-EXASOL-6.2.0/build_deps/apt_get_packages_diff.md index 38026da8..f0ce64f6 100644 --- a/doc/changes/package_diffs/7.0.0/r-4-minimal-EXASOL-6.2.0/build_deps/apt_get_packages_diff.md +++ b/doc/changes/package_diffs/7.0.0/r-4-minimal-EXASOL-6.2.0/build_deps/apt_get_packages_diff.md @@ -7,7 +7,7 @@ | 2 | curl | 7.58.0-2ubuntu3.24 | 7.81.0-1ubuntu1.13 | UPDATED | | 3 | libpcre3-dev | 2:8.39-9 | 2:8.39-13ubuntu0.22.04.1 | UPDATED | | 4 | locales | 2.27-3ubuntu1.6 | 2.35-0ubuntu3.1 | UPDATED | -| 5 | openjdk-11-jdk | 11.0.19+7~us1-0ubuntu1~18.04.1 | 11.0.20+8-1ubuntu1~22.04 | UPDATED | +| 5 | openjdk-11-jdk | 11.0.19+7~us1-0ubuntu1~18.04.1 | 11.0.20.1+1-0ubuntu1~22.04 | UPDATED | | 6 | protobuf-compiler | 3.0.0-9.1ubuntu1 | 3.12.4-1ubuntu7.22.04.1 | UPDATED | | 7 | tar | 1.29b-2ubuntu0.4 | 1.34+dfsg-1ubuntu0.1.22.04.1 | UPDATED | | 8 | python3 | | 3.10.6-1~22.04 | NEW | diff --git a/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/build_deps/apt_get_packages_diff.md b/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/build_deps/apt_get_packages_diff.md index 2c0801dc..5d8e38ff 100644 --- a/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/build_deps/apt_get_packages_diff.md +++ b/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/build_deps/apt_get_packages_diff.md @@ -1,13 +1,13 @@ -| | Package | Version in 6.1.0 | Version in 7.0.0 | Status | -|---:|:------------------|:-------------------------------|:-------------------------------|:---------| -| 0 | build-essential | 12.4ubuntu1 | 12.4ubuntu1 | | -| 1 | chrpath | 0.16-2 | 0.16-2 | | -| 2 | coreutils | 8.28-1ubuntu1 | 8.28-1ubuntu1 | | -| 3 | curl | 7.68.0-1ubuntu2.19 | 7.68.0-1ubuntu2.19 | | -| 4 | libpcre3-dev | 2:8.39-9ubuntu0.1 | 2:8.39-9ubuntu0.1 | | -| 5 | locales | 2.27-3ubuntu1.6 | 2.27-3ubuntu1.6 | | -| 6 | openjdk-11-jdk | 11.0.19+7~us1-0ubuntu1~20.04.1 | 11.0.19+7~us1-0ubuntu1~20.04.1 | | -| 7 | protobuf-compiler | 3.0.0-9.1ubuntu1.1 | 3.0.0-9.1ubuntu1.1 | | -| 8 | tar | 1.29b-2ubuntu0.4 | 1.29b-2ubuntu0.4 | | \ No newline at end of file +| | Package | Version in 6.1.0 | Version in 7.0.0 | Status | +|---:|:------------------|:-------------------------------|:---------------------------|:---------| +| 0 | openjdk-11-jdk | 11.0.19+7~us1-0ubuntu1~20.04.1 | 11.0.20.1+1-0ubuntu1~20.04 | UPDATED | +| 1 | build-essential | 12.4ubuntu1 | 12.4ubuntu1 | | +| 2 | chrpath | 0.16-2 | 0.16-2 | | +| 3 | coreutils | 8.28-1ubuntu1 | 8.28-1ubuntu1 | | +| 4 | curl | 7.68.0-1ubuntu2.19 | 7.68.0-1ubuntu2.19 | | +| 5 | libpcre3-dev | 2:8.39-9ubuntu0.1 | 2:8.39-9ubuntu0.1 | | +| 6 | locales | 2.27-3ubuntu1.6 | 2.27-3ubuntu1.6 | | +| 7 | protobuf-compiler | 3.0.0-9.1ubuntu1.1 | 3.0.0-9.1ubuntu1.1 | | +| 8 | tar | 1.29b-2ubuntu0.4 | 1.29b-2ubuntu0.4 | | \ No newline at end of file diff --git a/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/flavor_base_deps_apt/apt_get_packages_diff.md b/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/flavor_base_deps_apt/apt_get_packages_diff.md index b680ea2c..72964fcc 100644 --- a/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/flavor_base_deps_apt/apt_get_packages_diff.md +++ b/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/flavor_base_deps_apt/apt_get_packages_diff.md @@ -2,24 +2,24 @@ | | Package | Version in 6.1.0 | Version in 7.0.0 | Status | |---:|:---------------------|:--------------------------------|:--------------------------------|:---------| -| 0 | apt-transport-https | 2.0.9 | 2.0.9 | | -| 1 | build-essential | 12.8ubuntu1.1 | 12.8ubuntu1.1 | | -| 2 | git | 1:2.25.1-1ubuntu3.11 | 1:2.25.1-1ubuntu3.11 | | -| 3 | gnupg | 2.2.19-3ubuntu2.2 | 2.2.19-3ubuntu2.2 | | -| 4 | ldap-utils | 2.4.49+dfsg-2ubuntu1.9 | 2.4.49+dfsg-2ubuntu1.9 | | -| 5 | libcurl4-openssl-dev | 7.68.0-1ubuntu2.19 | 7.68.0-1ubuntu2.19 | | -| 6 | libhiredis-dev | 0.14.0-6 | 0.14.0-6 | | -| 7 | libldap2-dev | 2.4.49+dfsg-2ubuntu1.9 | 2.4.49+dfsg-2ubuntu1.9 | | -| 8 | libldb2 | 2:2.4.4-0ubuntu0.20.04.2 | 2:2.4.4-0ubuntu0.20.04.2 | | -| 9 | libleveldb1d | 1.22-3ubuntu2 | 1.22-3ubuntu2 | | -| 10 | libsasl2-dev | 2.1.27+dfsg-2ubuntu0.1 | 2.1.27+dfsg-2ubuntu0.1 | | -| 11 | libsmbclient | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | | -| 12 | libsmbclient-dev | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | | -| 13 | libxml2-dev | 2.9.10+dfsg-5ubuntu0.20.04.6 | 2.9.10+dfsg-5ubuntu0.20.04.6 | | -| 14 | maven | 3.6.3-1 | 3.6.3-1 | | -| 15 | openssl | 1.1.1f-1ubuntu2.19 | 1.1.1f-1ubuntu2.19 | | -| 16 | slapd | 2.4.49+dfsg-2ubuntu1.9 | 2.4.49+dfsg-2ubuntu1.9 | | -| 17 | smbclient | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | | +| 0 | libsmbclient | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | 2:4.15.13+dfsg-0ubuntu0.20.04.4 | UPDATED | +| 1 | libsmbclient-dev | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | 2:4.15.13+dfsg-0ubuntu0.20.04.4 | UPDATED | +| 2 | smbclient | 2:4.15.13+dfsg-0ubuntu0.20.04.3 | 2:4.15.13+dfsg-0ubuntu0.20.04.4 | UPDATED | +| 3 | apt-transport-https | 2.0.9 | 2.0.9 | | +| 4 | build-essential | 12.8ubuntu1.1 | 12.8ubuntu1.1 | | +| 5 | git | 1:2.25.1-1ubuntu3.11 | 1:2.25.1-1ubuntu3.11 | | +| 6 | gnupg | 2.2.19-3ubuntu2.2 | 2.2.19-3ubuntu2.2 | | +| 7 | ldap-utils | 2.4.49+dfsg-2ubuntu1.9 | 2.4.49+dfsg-2ubuntu1.9 | | +| 8 | libcurl4-openssl-dev | 7.68.0-1ubuntu2.19 | 7.68.0-1ubuntu2.19 | | +| 9 | libhiredis-dev | 0.14.0-6 | 0.14.0-6 | | +| 10 | libldap2-dev | 2.4.49+dfsg-2ubuntu1.9 | 2.4.49+dfsg-2ubuntu1.9 | | +| 11 | libldb2 | 2:2.4.4-0ubuntu0.20.04.2 | 2:2.4.4-0ubuntu0.20.04.2 | | +| 12 | libleveldb1d | 1.22-3ubuntu2 | 1.22-3ubuntu2 | | +| 13 | libsasl2-dev | 2.1.27+dfsg-2ubuntu0.1 | 2.1.27+dfsg-2ubuntu0.1 | | +| 14 | libxml2-dev | 2.9.10+dfsg-5ubuntu0.20.04.6 | 2.9.10+dfsg-5ubuntu0.20.04.6 | | +| 15 | maven | 3.6.3-1 | 3.6.3-1 | | +| 16 | openssl | 1.1.1f-1ubuntu2.19 | 1.1.1f-1ubuntu2.19 | | +| 17 | slapd | 2.4.49+dfsg-2ubuntu1.9 | 2.4.49+dfsg-2ubuntu1.9 | | | 18 | unixodbc-dev | 2.3.6-0.1build1 | 2.3.6-0.1build1 | | | 19 | unzip | 6.0-25ubuntu1.1 | 6.0-25ubuntu1.1 | | | 20 | wget | 1.20.3-1ubuntu2 | 1.20.3-1ubuntu2 | | \ No newline at end of file diff --git a/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/language_deps/apt_get_packages_diff.md b/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/language_deps/apt_get_packages_diff.md index 34a1aa00..3dbc5710 100644 --- a/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/language_deps/apt_get_packages_diff.md +++ b/doc/changes/package_diffs/7.0.0/standard-EXASOL-8.0.0/language_deps/apt_get_packages_diff.md @@ -1,9 +1,9 @@ -| | Package | Version in 6.1.0 | Version in 7.0.0 | Status | -|---:|:------------------------|:-------------------------------|:-------------------------|:---------| -| 0 | openjdk-11-jdk-headless | 11.0.19+7~us1-0ubuntu1~20.04.1 | 11.0.20+8-1ubuntu1~20.04 | UPDATED | -| 1 | ca-certificates | 20230311ubuntu0.20.04.1 | 20230311ubuntu0.20.04.1 | | -| 2 | curl | 7.68.0-1ubuntu2.19 | 7.68.0-1ubuntu2.19 | | -| 3 | python3-distutils | 3.8.10-0ubuntu1~20.04 | 3.8.10-0ubuntu1~20.04 | | -| 4 | python3.8-dev | 3.8.10-0ubuntu1~20.04.8 | 3.8.10-0ubuntu1~20.04.8 | | \ No newline at end of file +| | Package | Version in 6.1.0 | Version in 7.0.0 | Status | +|---:|:------------------------|:-------------------------------|:---------------------------|:---------| +| 0 | openjdk-11-jdk-headless | 11.0.19+7~us1-0ubuntu1~20.04.1 | 11.0.20.1+1-0ubuntu1~20.04 | UPDATED | +| 1 | ca-certificates | 20230311ubuntu0.20.04.1 | 20230311ubuntu0.20.04.1 | | +| 2 | curl | 7.68.0-1ubuntu2.19 | 7.68.0-1ubuntu2.19 | | +| 3 | python3-distutils | 3.8.10-0ubuntu1~20.04 | 3.8.10-0ubuntu1~20.04 | | +| 4 | python3.8-dev | 3.8.10-0ubuntu1~20.04.8 | 3.8.10-0ubuntu1~20.04.8 | | \ No newline at end of file diff --git a/flavors/r-4-minimal-EXASOL-6.2.0/flavor_base/build_deps/packages/apt_get_packages b/flavors/r-4-minimal-EXASOL-6.2.0/flavor_base/build_deps/packages/apt_get_packages index 265a6527..f1a636d4 100644 --- a/flavors/r-4-minimal-EXASOL-6.2.0/flavor_base/build_deps/packages/apt_get_packages +++ b/flavors/r-4-minimal-EXASOL-6.2.0/flavor_base/build_deps/packages/apt_get_packages @@ -2,7 +2,7 @@ coreutils|8.32-4.1ubuntu1 locales|2.35-0ubuntu3.1 tar|1.34+dfsg-1ubuntu0.1.22.04.1 curl|7.81.0-1ubuntu1.13 -openjdk-11-jdk|11.0.20+8-1ubuntu1~22.04 +openjdk-11-jdk|11.0.20.1+1-0ubuntu1~22.04 build-essential|12.9ubuntu3 libpcre3-dev|2:8.39-13ubuntu0.22.04.1 protobuf-compiler|3.12.4-1ubuntu7.22.04.1 diff --git a/flavors/r-4-minimal-EXASOL-6.2.0/flavor_base/security_scan/.trivyignore b/flavors/r-4-minimal-EXASOL-6.2.0/flavor_base/security_scan/.trivyignore index f023dc25..82492009 100644 --- a/flavors/r-4-minimal-EXASOL-6.2.0/flavor_base/security_scan/.trivyignore +++ b/flavors/r-4-minimal-EXASOL-6.2.0/flavor_base/security_scan/.trivyignore @@ -13,6 +13,8 @@ CVE-2023-3609 CVE-2023-3777 CVE-2023-3995 CVE-2023-4015 +CVE-2023-4563 +CVE-2023-4569 #CVE-2022-23648 is a bug in containerd, not issue for containers CVE-2022-23648 #issue in cgroups, but no threat for ScriptLanguageContainer diff --git a/flavors/standard-EXASOL-8.0.0/flavor_base/build_deps/packages/apt_get_packages b/flavors/standard-EXASOL-8.0.0/flavor_base/build_deps/packages/apt_get_packages index d5476824..0c3d5818 100644 --- a/flavors/standard-EXASOL-8.0.0/flavor_base/build_deps/packages/apt_get_packages +++ b/flavors/standard-EXASOL-8.0.0/flavor_base/build_deps/packages/apt_get_packages @@ -2,7 +2,7 @@ coreutils|8.28-1ubuntu1 locales|2.27-3ubuntu1.6 tar|1.29b-2ubuntu0.4 curl|7.68.0-1ubuntu2.19 -openjdk-11-jdk|11.0.19+7~us1-0ubuntu1~20.04.1 +openjdk-11-jdk|11.0.20.1+1-0ubuntu1~20.04 build-essential|12.4ubuntu1 libpcre3-dev|2:8.39-9ubuntu0.1 protobuf-compiler|3.0.0-9.1ubuntu1.1 diff --git a/flavors/standard-EXASOL-8.0.0/flavor_base/flavor_base_deps_apt/packages/apt_get_packages b/flavors/standard-EXASOL-8.0.0/flavor_base/flavor_base_deps_apt/packages/apt_get_packages index 46675a0c..5dc02f0b 100644 --- a/flavors/standard-EXASOL-8.0.0/flavor_base/flavor_base_deps_apt/packages/apt_get_packages +++ b/flavors/standard-EXASOL-8.0.0/flavor_base/flavor_base_deps_apt/packages/apt_get_packages @@ -16,6 +16,6 @@ libxml2-dev|2.9.10+dfsg-5ubuntu0.20.04.6 # Needed by R XML package apt-transport-https|2.0.9 gnupg|2.2.19-3ubuntu2.2 libhiredis-dev|0.14.0-6 # Needed by R redux package -libsmbclient|2:4.15.13+dfsg-0ubuntu0.20.04.3 -libsmbclient-dev|2:4.15.13+dfsg-0ubuntu0.20.04.3 -smbclient|2:4.15.13+dfsg-0ubuntu0.20.04.3 +libsmbclient|2:4.15.13+dfsg-0ubuntu0.20.04.4 +libsmbclient-dev|2:4.15.13+dfsg-0ubuntu0.20.04.4 +smbclient|2:4.15.13+dfsg-0ubuntu0.20.04.4 diff --git a/flavors/standard-EXASOL-8.0.0/flavor_base/language_deps/packages/apt_get_packages b/flavors/standard-EXASOL-8.0.0/flavor_base/language_deps/packages/apt_get_packages index 2b701a6d..e1463e05 100644 --- a/flavors/standard-EXASOL-8.0.0/flavor_base/language_deps/packages/apt_get_packages +++ b/flavors/standard-EXASOL-8.0.0/flavor_base/language_deps/packages/apt_get_packages @@ -2,4 +2,4 @@ ca-certificates|20230311ubuntu0.20.04.1 python3.8-dev|3.8.10-0ubuntu1~20.04.8 python3-distutils|3.8.10-0ubuntu1~20.04 curl|7.68.0-1ubuntu2.19 -openjdk-11-jdk-headless|11.0.20+8-1ubuntu1~20.04 +openjdk-11-jdk-headless|11.0.20.1+1-0ubuntu1~20.04 diff --git a/flavors/standard-EXASOL-8.0.0/flavor_base/security_scan/.trivyignore b/flavors/standard-EXASOL-8.0.0/flavor_base/security_scan/.trivyignore index af0de31d..adb714c8 100644 --- a/flavors/standard-EXASOL-8.0.0/flavor_base/security_scan/.trivyignore +++ b/flavors/standard-EXASOL-8.0.0/flavor_base/security_scan/.trivyignore @@ -15,6 +15,7 @@ CVE-2023-3090 CVE-2023-3611 CVE-2023-3776 CVE-2023-3609 +CVE-2023-4563 #CVE-2022-23648 is a bug in containerd, not issue for containers CVE-2022-23648 #issue in cgroups, but no threat for ScriptLanguageContainer