dirty fix for CVE-2020-28928

2026-05-24 09:28:37 +00:00 · 2020-11-29 15:30:12 +01:00 · 2020-11-29 15:30:12 +01:00 · b92f74ed98
commit b92f74ed98
parent 9688e66508
5 changed files with 15 additions and 0 deletions
--- a/3
+++ b/3
@ -28,6 +28,9 @@ RUN apk --no-cache add certbot libstdc++ libmaxminddb geoip pcre yajl fail2ban c
    touch /var/log/nginx/error.log /var/log/nginx/modsec_audit.log && \
    chown nginx:nginx /var/log/nginx/*.log

+# Fix CVE-2020-28928
+RUN apk --no-cache add "musl-utils>1.1.24-r2"
+
 VOLUME /www /http-confs /server-confs /modsec-confs /modsec-crs-confs /cache

 EXPOSE 8080/tcp 8443/tcp
--- a/3
+++ b/3
@ -28,6 +28,9 @@ RUN apk --no-cache add certbot libstdc++ libmaxminddb geoip pcre yajl fail2ban c
    touch /var/log/nginx/error.log /var/log/nginx/modsec_audit.log && \
    chown nginx:nginx /var/log/nginx/*.log

+# Fix CVE-2020-28928
+RUN apk --no-cache add "musl-utils>1.1.24-r2"
+
 VOLUME /www /http-confs /server-confs /modsec-confs /modsec-crs-confs /cache

 EXPOSE 8080/tcp 8443/tcp
--- a/3
+++ b/3
@ -35,6 +35,9 @@ RUN apk --no-cache add certbot libstdc++ libmaxminddb geoip pcre yajl fail2ban c
    touch /var/log/nginx/error.log /var/log/nginx/modsec_audit.log && \
    chown nginx:nginx /var/log/nginx/*.log

+# Fix CVE-2020-28928
+RUN apk --no-cache add "musl-utils>1.1.24-r2"
+
 VOLUME /www /http-confs /server-confs /modsec-confs /modsec-crs-confs /cache

 EXPOSE 8080/tcp 8443/tcp
--- a/3
+++ b/3
@ -35,6 +35,9 @@ RUN apk --no-cache add certbot libstdc++ libmaxminddb geoip pcre yajl fail2ban c
    touch /var/log/nginx/error.log /var/log/nginx/modsec_audit.log && \
    chown nginx:nginx /var/log/nginx/*.log

+# Fix CVE-2020-28928
+RUN apk --no-cache add "musl-utils>1.1.24-r2"
+
 VOLUME /www /http-confs /server-confs /modsec-confs /modsec-crs-confs /cache

 EXPOSE 8080/tcp 8443/tcp
--- a/3
+++ b/3
@ -28,6 +28,9 @@ RUN apk --no-cache add certbot libstdc++ libmaxminddb geoip pcre yajl fail2ban c
    touch /var/log/nginx/error.log /var/log/nginx/modsec_audit.log && \
    chown nginx:nginx /var/log/nginx/*.log

+# Fix CVE-2020-28928
+RUN apk --no-cache add "musl-utils>1.1.24-r2"
+
 VOLUME /www /http-confs /server-confs /modsec-confs /modsec-crs-confs /cache

 EXPOSE 8080/tcp 8443/tcp