Resolves: Java Vulnerability (!148) · Merge requests · ghsc / Hazards Development Team / earthquake-eventadmin

Martinez, Eric M. requested to merge ghsc/users/emartinez/earthquake-eventadmin:138-java-vulnerability into master Aug 01, 2024

Closes #138 (closed)

This change builds the container using openjdk-11-jre-headless. This package is currently at Java 11.0.24 which should resolve the vulnerability.

root@9e1fb85ce039:/var/www/vhosts# apt info openjdk-11-jre-headless
Package: openjdk-11-jre-headless
Version: 11.0.24+8-1ubuntu3~20.04
Priority: optional
Section: java
Source: openjdk-lts
Origin: Ubuntu
Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Original-Maintainer: OpenJDK Team <openjdk@lists.launchpad.net>
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Installed-Size: 176 MB
Provides: java-runtime-headless (= 11), java10-runtime-headless, java11-runtime-headless, java2-runtime-headless, java5-runtime-headless, java6-runtime-headless, java7-runtime-headless, java8-runtime-headless, java9-runtime-headless
Depends: ca-certificates-java (>= 20190405~), java-common (>= 0.28), libcups2, libfontconfig1, liblcms2-2 (>= 2.2+git20110628), libjpeg8 (>= 8c), libnss3 (>= 2:3.17.1), util-linux (>= 2.26.2-4), libasound2 (>= 1.0.16), libc6 (>= 2.29), libfreetype6 (>= 2.3.5), libgcc-s1 (>= 4.0), libharfbuzz0b (>= 1.2.6), libpcsclite1 (>= 1.3.0), libstdc++6 (>= 4.1.1), zlib1g (>= 1:1.2.2)
Suggests: libnss-mdns, fonts-dejavu-extra, fonts-ipafont-gothic, fonts-ipafont-mincho, fonts-wqy-microhei | fonts-wqy-zenhei, fonts-indic
Conflicts: openjdk-11-jdk-headless (<< 11~18-2), oracle-java11-installer
Breaks: clojure1.8 (<= 1.8.0-7ubuntu1~)
Replaces: openjdk-11-jdk-headless (<< 11~18-2)
Homepage: https://openjdk.java.net/
Download-Size: 38.3 MB
APT-Sources: http://archive.ubuntu.com/ubuntu focal-updates/main amd64 Packages
Description: OpenJDK Java runtime, using Hotspot JIT (headless)

Resolves: Java Vulnerability

Merge request reports