Skip to content

Commit dc9861b

Browse files
committed
fix: update Dockerfile to fix CVE-2026-42945
Updated the base image from ubi9/nginx-120 (nginx 1.20.1, the vulnerable version) to ubi9/nginx-124 (nginx 1.24.x) in the Dockerfile. This resolves CVE-2026-42945 by replacing the affected nginx package with a patched version shipped in the newer UBI9 nginx image. More info: https://access.redhat.com/security/cve/cve-2026-42945 Refs: HAUKI-805
1 parent 19acaed commit dc9861b

1 file changed

Lines changed: 1 addition & 1 deletion

File tree

Dockerfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -51,7 +51,7 @@ RUN export APP_VERSION=$(yarn --silent app:version | tr -d '\n') && \
5151
envsubst '${APP_VERSION},${REACT_APP_RELEASE}' < /app/nginx.conf.template > /app/nginx.conf
5252

5353
# =============================
54-
FROM registry.access.redhat.com/ubi9/nginx-120 as production
54+
FROM registry.access.redhat.com/ubi9/nginx-124 as production
5555
# =============================
5656

5757
USER root

0 commit comments

Comments
 (0)