Docker Library Bot 4 lat temu
rodzic
commit
fbc0caa1bb
2 zmienionych plików z 21 dodań i 18 usunięć
  1. 12 0
      amazoncorretto/README.md
  2. 9 18
      wordpress/README.md

+ 12 - 0
amazoncorretto/README.md

@@ -81,6 +81,18 @@ Amazon will provide security updates for Corretto 8 until at least June 2023. Up
 
 Corretto is designed as a drop-in replacement for all Java SE distributions unless you are using features (e.g., Java Flight Recorder) not available in OpenJDK. Once Corretto binaries are installed on a host and correctly invoked to run your Java applications (e.g., using the alternatives command on Linux), existing command-line options, tuning parameters, monitoring, and anything else in place will continue to work as before.
 
+### Why does security scanner show that a docker image has a CVE?
+
+If a security scanner reports that an amazoncorretto image includes a CVE, the first recommended action is to pull an updated version of this image.
+
+If no updated image is available, run the appropriate command to update packages for the platform, ie. run "apk -U upgrade" for Alpine or "yum update -y --security" for AmazonLinux in your Dockerfiles or systems to resolve the issue immediately.
+
+If no updated package is available, please treat this as a potential security issue and follow [these instructions](https://aws.amazon.com/security/vulnerability-reporting/) or email AWS security directly at [[email protected]](mailto:[email protected]).
+
+It is the responsibility of the base docker image supplier to provide timely security updates to images and packages. The amazoncorretto images are automatically rebuilt when a new base image is made available, but we do not make changes to our Dockerfiles to pull in one-off package updates. If a new base image has not yet been made generally available by a base docker image maintainer, please contact that maintainer to request that the issue be addressed.
+
+Note that there are multiple reasons why a CVE may appear to be present in a docker image, as explained in the [docker library FAQs](https://github.com/docker-library/faq/tree/73f10b0daf2fb8e7b38efaccc0e90b3510919d51#why-does-my-security-scanner-show-that-an-image-has-cves).
+
 # Image Variants
 
 The `amazoncorretto` images come in many flavors, each designed for a specific use case.

+ 9 - 18
wordpress/README.md

@@ -24,27 +24,18 @@ WARNING:
 
 # Supported tags and respective `Dockerfile` links
 
--	[`5.8.0-apache`, `5.8-apache`, `5-apache`, `apache`, `5.8.0`, `5.8`, `5`, `latest`, `5.8.0-php7.4-apache`, `5.8-php7.4-apache`, `5-php7.4-apache`, `php7.4-apache`, `5.8.0-php7.4`, `5.8-php7.4`, `5-php7.4`, `php7.4`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php7.4/apache/Dockerfile)
--	[`5.8.0-fpm`, `5.8-fpm`, `5-fpm`, `fpm`, `5.8.0-php7.4-fpm`, `5.8-php7.4-fpm`, `5-php7.4-fpm`, `php7.4-fpm`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php7.4/fpm/Dockerfile)
--	[`5.8.0-fpm-alpine`, `5.8-fpm-alpine`, `5-fpm-alpine`, `fpm-alpine`, `5.8.0-php7.4-fpm-alpine`, `5.8-php7.4-fpm-alpine`, `5-php7.4-fpm-alpine`, `php7.4-fpm-alpine`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php7.4/fpm-alpine/Dockerfile)
--	[`5.8.0-php7.3-apache`, `5.8-php7.3-apache`, `5-php7.3-apache`, `php7.3-apache`, `5.8.0-php7.3`, `5.8-php7.3`, `5-php7.3`, `php7.3`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php7.3/apache/Dockerfile)
--	[`5.8.0-php7.3-fpm`, `5.8-php7.3-fpm`, `5-php7.3-fpm`, `php7.3-fpm`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php7.3/fpm/Dockerfile)
--	[`5.8.0-php7.3-fpm-alpine`, `5.8-php7.3-fpm-alpine`, `5-php7.3-fpm-alpine`, `php7.3-fpm-alpine`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php7.3/fpm-alpine/Dockerfile)
--	[`5.8.0-php8.0-apache`, `5.8-php8.0-apache`, `5-php8.0-apache`, `php8.0-apache`, `5.8.0-php8.0`, `5.8-php8.0`, `5-php8.0`, `php8.0`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php8.0/apache/Dockerfile)
--	[`5.8.0-php8.0-fpm`, `5.8-php8.0-fpm`, `5-php8.0-fpm`, `php8.0-fpm`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php8.0/fpm/Dockerfile)
--	[`5.8.0-php8.0-fpm-alpine`, `5.8-php8.0-fpm-alpine`, `5-php8.0-fpm-alpine`, `php8.0-fpm-alpine`](https://github.com/docker-library/wordpress/blob/e98fe75c5a41e2d3f3c4d89f3e6b15e62638147c/latest/php8.0/fpm-alpine/Dockerfile)
+-	[`5.8.1-apache`, `5.8-apache`, `5-apache`, `apache`, `5.8.1`, `5.8`, `5`, `latest`, `5.8.1-php7.4-apache`, `5.8-php7.4-apache`, `5-php7.4-apache`, `php7.4-apache`, `5.8.1-php7.4`, `5.8-php7.4`, `5-php7.4`, `php7.4`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php7.4/apache/Dockerfile)
+-	[`5.8.1-fpm`, `5.8-fpm`, `5-fpm`, `fpm`, `5.8.1-php7.4-fpm`, `5.8-php7.4-fpm`, `5-php7.4-fpm`, `php7.4-fpm`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php7.4/fpm/Dockerfile)
+-	[`5.8.1-fpm-alpine`, `5.8-fpm-alpine`, `5-fpm-alpine`, `fpm-alpine`, `5.8.1-php7.4-fpm-alpine`, `5.8-php7.4-fpm-alpine`, `5-php7.4-fpm-alpine`, `php7.4-fpm-alpine`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php7.4/fpm-alpine/Dockerfile)
+-	[`5.8.1-php7.3-apache`, `5.8-php7.3-apache`, `5-php7.3-apache`, `php7.3-apache`, `5.8.1-php7.3`, `5.8-php7.3`, `5-php7.3`, `php7.3`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php7.3/apache/Dockerfile)
+-	[`5.8.1-php7.3-fpm`, `5.8-php7.3-fpm`, `5-php7.3-fpm`, `php7.3-fpm`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php7.3/fpm/Dockerfile)
+-	[`5.8.1-php7.3-fpm-alpine`, `5.8-php7.3-fpm-alpine`, `5-php7.3-fpm-alpine`, `php7.3-fpm-alpine`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php7.3/fpm-alpine/Dockerfile)
+-	[`5.8.1-php8.0-apache`, `5.8-php8.0-apache`, `5-php8.0-apache`, `php8.0-apache`, `5.8.1-php8.0`, `5.8-php8.0`, `5-php8.0`, `php8.0`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php8.0/apache/Dockerfile)
+-	[`5.8.1-php8.0-fpm`, `5.8-php8.0-fpm`, `5-php8.0-fpm`, `php8.0-fpm`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php8.0/fpm/Dockerfile)
+-	[`5.8.1-php8.0-fpm-alpine`, `5.8-php8.0-fpm-alpine`, `5-php8.0-fpm-alpine`, `php8.0-fpm-alpine`](https://github.com/docker-library/wordpress/blob/9954966feffdaf39082609816f896c2e3f75f0db/latest/php8.0/fpm-alpine/Dockerfile)
 -	[`cli-2.5.0`, `cli-2.5`, `cli-2`, `cli`, `cli-2.5.0-php7.4`, `cli-2.5-php7.4`, `cli-2-php7.4`, `cli-php7.4`](https://github.com/docker-library/wordpress/blob/cdb836237e3af7bfd011957316f159c1e81bf29c/cli/php7.4/alpine/Dockerfile)
 -	[`cli-2.5.0-php7.3`, `cli-2.5-php7.3`, `cli-2-php7.3`, `cli-php7.3`](https://github.com/docker-library/wordpress/blob/cdb836237e3af7bfd011957316f159c1e81bf29c/cli/php7.3/alpine/Dockerfile)
 -	[`cli-2.5.0-php8.0`, `cli-2.5-php8.0`, `cli-2-php8.0`, `cli-php8.0`](https://github.com/docker-library/wordpress/blob/cdb836237e3af7bfd011957316f159c1e81bf29c/cli/php8.0/alpine/Dockerfile)
--	[`beta-5.8.1-RC1-apache`, `beta-5.8.1-apache`, `beta-5.8-apache`, `beta-5-apache`, `beta-apache`, `beta-5.8.1-RC1`, `beta-5.8.1`, `beta-5.8`, `beta-5`, `beta`, `beta-5.8.1-RC1-php7.4-apache`, `beta-5.8.1-php7.4-apache`, `beta-5.8-php7.4-apache`, `beta-5-php7.4-apache`, `beta-php7.4-apache`, `beta-5.8.1-RC1-php7.4`, `beta-5.8.1-php7.4`, `beta-5.8-php7.4`, `beta-5-php7.4`, `beta-php7.4`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php7.4/apache/Dockerfile)
--	[`beta-5.8.1-RC1-fpm`, `beta-5.8.1-fpm`, `beta-5.8-fpm`, `beta-5-fpm`, `beta-fpm`, `beta-5.8.1-RC1-php7.4-fpm`, `beta-5.8.1-php7.4-fpm`, `beta-5.8-php7.4-fpm`, `beta-5-php7.4-fpm`, `beta-php7.4-fpm`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php7.4/fpm/Dockerfile)
--	[`beta-5.8.1-RC1-fpm-alpine`, `beta-5.8.1-fpm-alpine`, `beta-5.8-fpm-alpine`, `beta-5-fpm-alpine`, `beta-fpm-alpine`, `beta-5.8.1-RC1-php7.4-fpm-alpine`, `beta-5.8.1-php7.4-fpm-alpine`, `beta-5.8-php7.4-fpm-alpine`, `beta-5-php7.4-fpm-alpine`, `beta-php7.4-fpm-alpine`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php7.4/fpm-alpine/Dockerfile)
--	[`beta-5.8.1-RC1-php7.3-apache`, `beta-5.8.1-php7.3-apache`, `beta-5.8-php7.3-apache`, `beta-5-php7.3-apache`, `beta-php7.3-apache`, `beta-5.8.1-RC1-php7.3`, `beta-5.8.1-php7.3`, `beta-5.8-php7.3`, `beta-5-php7.3`, `beta-php7.3`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php7.3/apache/Dockerfile)
--	[`beta-5.8.1-RC1-php7.3-fpm`, `beta-5.8.1-php7.3-fpm`, `beta-5.8-php7.3-fpm`, `beta-5-php7.3-fpm`, `beta-php7.3-fpm`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php7.3/fpm/Dockerfile)
--	[`beta-5.8.1-RC1-php7.3-fpm-alpine`, `beta-5.8.1-php7.3-fpm-alpine`, `beta-5.8-php7.3-fpm-alpine`, `beta-5-php7.3-fpm-alpine`, `beta-php7.3-fpm-alpine`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php7.3/fpm-alpine/Dockerfile)
--	[`beta-5.8.1-RC1-php8.0-apache`, `beta-5.8.1-php8.0-apache`, `beta-5.8-php8.0-apache`, `beta-5-php8.0-apache`, `beta-php8.0-apache`, `beta-5.8.1-RC1-php8.0`, `beta-5.8.1-php8.0`, `beta-5.8-php8.0`, `beta-5-php8.0`, `beta-php8.0`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php8.0/apache/Dockerfile)
--	[`beta-5.8.1-RC1-php8.0-fpm`, `beta-5.8.1-php8.0-fpm`, `beta-5.8-php8.0-fpm`, `beta-5-php8.0-fpm`, `beta-php8.0-fpm`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php8.0/fpm/Dockerfile)
--	[`beta-5.8.1-RC1-php8.0-fpm-alpine`, `beta-5.8.1-php8.0-fpm-alpine`, `beta-5.8-php8.0-fpm-alpine`, `beta-5-php8.0-fpm-alpine`, `beta-php8.0-fpm-alpine`](https://github.com/docker-library/wordpress/blob/eaf7449d5aefcb35b23978c3f0d4fd33cea99369/beta/php8.0/fpm-alpine/Dockerfile)
 
 # Quick reference (cont.)