Blame - base_sdc-cassandra/Dockerfile - onap/sdc/sdc-docker-base

blob: 8db29b3ce32504da4d2d79f3bdb50baeadf9e316 [file] [log] [blame]

Areli Fuss	547839b	2017-08-22 15:34:37 +0300	[diff] [blame]	1	FROM cassandra:2.1.17
				2
Gary Wu	d0a8a0d	2018-04-12 10:39:39 -0700	[diff] [blame]	3	# Upgrade specific system libraries to fix CVE vulnerabilities
				4	# avahi 0.7-3.1
				5	# For CVE-2017-6519
				6	# curl 7.58.0-2
				7	# For CVE-2016-7167 CVE-2016-7141
				8	# krb5 1.16-2
				9	# For 2018-5709 CVE-2017-15088 CVE-2017-11462
				10	# libtiff5 4.0.9-5
				11	# For CVE-2018-5360
				12	# libx11 2:1.6.5-1
				13	# For CVE-2016-7943 CVE-2016-7942
				14	# libxml2 2.9.4+dfsg1-6.1
				15	# For CVE-2016-4448
				16	# libxtst6 2:1.2.3-1
				17	# For CVE-2016-7951
				18	# perl 5.26.2-2
				19	# For CVE-2017-12837 CVE-2017-12883
				20	# python 2.7.15~rc1-1
				21	# For CVE-2017-1000158
				22	# libsqlite3-0 3.23.1-1
				23	# For CVE-2017-10989
				24	# libdb5.3
				25	# CVE-2016-3418 CVE-2016-0694 CVE-2016-0692 CVE-2016-0689 CVE-2016-0682
				26	# libcairo2 libcairo-gobject2
				27	# CVE-2017-9814
				28	# libc-bin libc6 multiarch-support
				29	# CVE-2018-1000001 CVE-2017-16997 CVE-2017-1000366 CVE-2015-5180 CVE-2016-5417 CVE-2018-6485 CVE-2017-15804 CVE-2017-15670 CVE-2014-9984 CVE-2014-9761 CVE-2015-8983 CVE-2015-8982
				30	# libgtk2.0-0 libgtk2.0-common
				31	# CVE-2014-1949
				32	# libharfbuzz0b
				33	# CVE-2015-8947 CVE-2016-2052
				34	# libgcrypt20
				35	# CVE-2017-0379
				36	# libtasn1-6
				37	# CVE-2018-6003 CVE-2017-10790
				38	# libxi6
				39	# CVE-2016-7946 CVE-2016-7945
				40	# libldap-2.4-2
				41	# CVE-2017-17740
				42	# libpcre3
				43	# CVE-2015-3217
				44	# passwd
				45	# CVE-2017-12424
				46	# zlib1g
				47	# CVE-2016-9843 CVE-2016-9841 CVE-2016-9842 CVE-2016-9840
				48
Gary Wu	79dd5f9	2018-05-10 07:47:22 -0700	[diff] [blame]	49	RUN echo "deb http://deb.debian.org/debian stretch main" >> /etc/apt/sources.list && \
				50	echo "deb http://deb.debian.org/debian stretch-updates main" >> /etc/apt/sources.list && \
				51	echo "deb http://security.debian.org stretch/updates main" >> /etc/apt/sources.list && \
				52	echo "deb http://deb.debian.org/debian buster main" >> /etc/apt/sources.list && \
Gary Wu	d0a8a0d	2018-04-12 10:39:39 -0700	[diff] [blame]	53	echo "deb http://deb.debian.org/debian buster-updates main" >> /etc/apt/sources.list && \
				54	echo "deb http://security.debian.org buster/updates main" >> /etc/apt/sources.list && \
				55	apt-get -y update && \
				56	apt-get -y --no-install-recommends install \
Tal Gitelman	d18094d	2018-10-29 19:51:30 +0200	[diff] [blame]	57	vim \
				58	vim-runtime \
				59	apt-utils \
Gary Wu	007aad9	2018-05-16 20:18:39 -0700	[diff] [blame]	60	openjdk-8-jdk \
Tal Gitelman	d18094d	2018-10-29 19:51:30 +0200	[diff] [blame]	61	libavahi-client3 \
				62	libavahi-common3 \
				63	curl \
				64	libcurl4 \
				65	krb5-locales \
				66	libgssapi-krb5-2 \
				67	libkrb5-3 \
				68	libkrb5support0 \
				69	libtiff5 \
				70	libx11-6 \
				71	libx11-data \
				72	libx11-xcb1 \
				73	libxml2 \
				74	libxtst6 \
				75	perl \
				76	python \
				77	libsqlite3-0 \
				78	libdb5.3 \
				79	libcairo2 \
				80	libcairo-gobject2 \
				81	libc-bin \
				82	libc6 \
				83	multiarch-support \
				84	libgtk2.0-0 \
				85	libgtk2.0-common \
				86	libharfbuzz0b \
				87	libgcrypt20 \
				88	libtasn1-6 \
				89	libxi6 \
				90	libldap-2.4-2 \
				91	libpcre3 \
				92	passwd \
				93	zlib1g \
				94	ntp && \
				95	apt-get -y autoremove && \
				96	update-alternatives --set java /usr/lib/jvm/java-8-openjdk-amd64/jre/bin/java && \
				97	curl -L https://omnitruck.chef.io/install.sh \| bash
Areli Fuss	547839b	2017-08-22 15:34:37 +0300	[diff] [blame]	98