[FOLIO-3402] folioci/alpine-jre-openjdk11 not affected by polkit (CVE-2021-4034) - FOLIO Issue Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: TBD
Resolution: Cannot Reproduce
Component/s: None
Labels:
- security

Template:

Standard Bug Write-Up Format
Development Team:
FOLIO DevOps
RCA Group:
TBD

Description

folioci/alpine-jre-openjdk11 = https://github.com/folio-org/folio-tools/blob/master/folio-java-docker/openjdk11/Dockerfile

Most FOLIO Java modules use this Docker image that is based on Alpine.

However, our image doesn't contain the polkit Alpine package.

Therefore it is not affected by this Local Privilege Escalation in polkit's pkexec:
https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt
https://security.alpinelinux.org/srcpkg/polkit

TestRail: Results

Attachments

Issue Links

relates to

FOLIO-3401 jenkins-slave not affected by polkit (CVE-2021-4034)

Closed

mentioned in: Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: Julian Ladisch

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 26/Jan/22 3:44 PM

Updated:: 27/Jan/22 4:31 PM

Resolved:: 26/Jan/22 4:00 PM

TestRail: Runs

TestRail: Cases