Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Debian security vulnerabilities #303

Open
Kala09 opened this issue Dec 24, 2024 · 7 comments
Open

Debian security vulnerabilities #303

Kala09 opened this issue Dec 24, 2024 · 7 comments

Comments

@Kala09
Copy link

Kala09 commented Dec 24, 2024

Hi,

Is there any chance of upgrading the debian package from 11 to 12? Currently we noticed multiple security vulnerabilities in debian 11 package and the image is blocking within our organisation.
@jjethwa
Copy link
Owner

jjethwa commented Dec 24, 2024
edited
Loading

Hi @Kala09

Thanks for creating the issue. I have some preliminary work done on updating the image here: https://github.com/jjethwa/icinga2/tree/bookworm

There does seem to be a problem with Icinga Director on the latest PHP version though, it throws a few warnings upon starting and then will throw the similar warnings in the Icinga Web 2 UI upon loading one of the Director pages the first time. Functionality seems to be unaffected once the PHP resources are compiled though. It looks like the Director team already know this and are working up update the code so it's compatible. To prevent users from having issues, I won't update the image to Debian Bookworm until Director is fully compatible.

If you don't need Director at this time, you can clone and build off the bookworm branch mentioned above. I'll keep this issue open until we can finally release it to the master branch.

@jjethwa jjethwa pinned this issue Dec 24, 2024
@jjethwa
Copy link
Owner

jjethwa commented Dec 24, 2024

Hi @Kala09

Updated the Director references and it looks like we are good to go! I'll submit a PR and push a build to latest. Let me know if you have any issues.

@jjethwa jjethwa unpinned this issue Dec 24, 2024
@jjethwa jjethwa mentioned this issue Dec 24, 2024
Merged
@Kala09
Copy link
Author

Kala09 commented Jan 9, 2025

Thank you for the prompt response, most of the critical vulnerabilities are fixed. But unfortunately still it is blocking with few critical and high vulnerabilities as listed below.

IMG_20250109_171048328_HDR_AE~2

@jjethwa
Copy link
Owner

jjethwa commented Jan 9, 2025

Hi @Kala09

Thanks for the added information. The build does an update to pull the latest package versions, so it looks like we need to wait for the upstream project updates to make it to the Debian repo. Let's leave this issue open for now and check back next week

@Kala09
Copy link
Author

Kala09 commented Jan 9, 2025

Sure @jjethwa , thank you

@Kala09
Copy link
Author

Kala09 commented Jan 29, 2025
edited
Loading

Hi @jjethwa , can you please let me know if there is any possibility to cleared the above critical vulnerabilities?

Looks like new debian bookworm version is released on jan11, 2025. Can you please have a look if this release could fix the vulnerability's?

@jjethwa
Copy link
Owner

jjethwa commented Jan 29, 2025

Hi @Kala09

I just kicked off a new build. It successfully ran and pushed to latest. Can you run your security tool against it? By the way, what tool is it? I might be able to automate it into the build process.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jjethwa @Kala09