opendev/system-config
Code Issues Proposed changes

hound: use updated git packages

Browse Source 
Pull in updated git packages to address CVE-2022-23521.

This is a direct copy of work done in
Ib08ff1fc7b3c8623fa6b927f3010af72e1b946cf

Change-Id: Ie7d4c3c50f4b72e83f32c91f17ea7e893c3d943a
This commit is contained in:
Ian Wienand 2023-01-19 14:44:43 +11:00
parent eb823707ab
commit 3f2cc870b8
No known key found for this signature in database
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
docker/hound/Dockerfile
View File

@ -27,6 +27,19 @@ RUN pip install git+https://opendev.org/opendev/jeepyb#egg=jeepyb \
RUN apt-get clean \
&& rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
# Begin temporary git package upgrade
RUN ARCH=`dpkg --print-architecture` \
&& cd /tmp \
&& apt-get update \
&& apt-get -y install wget \
&& wget https://static.opendev.org/project/opendev.org/debs/git/git_2.30.2-1opendev1.0_$ARCH.deb \
&& wget https://static.opendev.org/project/opendev.org/debs/git/git-man_2.30.2-1opendev1.0_all.deb \
&& apt-get -y install /tmp/git_*.deb /tmp/git-man_*.deb \
&& rm -f /tmp/*.deb \
&& apt-get clean \
&& rm -rf /var/lib/apt/lists/*
# End temporary git package upgrade
ADD supervisord.conf /etc/supervisor/conf.d/supervisord.conf
ADD start-container.sh /usr/bin/start-container
ADD update-hound-config.sh /usr/local/bin/update-hound-config