From 0558ceaf419d0be50befb5fa1f0f71cfdd3777d1 Mon Sep 17 00:00:00 2001
From: InfraOwner <120140348+InfraOwner@users.noreply.github.com>
Date: Thu, 20 Apr 2023 22:32:57 -0600
Subject: [PATCH] [Snyk] Security upgrade ubuntu from latest to 22.10 (#3159)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
This PR was automatically created by Snyk using the credentials of a real user.
Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.
#### Changes included in this PR
- docker/Dockerfile
We recommend upgrading to `ubuntu:22.10`, as this image has only 7 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.
Some of the most important vulnerabilities in your base image include:
| Severity | Issue | Exploit Maturity |
| :------: | :---- | :--------------- |
|  | Integer Overflow or Wraparound
[SNYK-UBUNTU2204-KRB5-3126899](https://snyk.io/vuln/SNYK-UBUNTU2204-KRB5-3126899) | No Known Exploit |
|  | Integer Overflow or Wraparound
[SNYK-UBUNTU2204-KRB5-3126899](https://snyk.io/vuln/SNYK-UBUNTU2204-KRB5-3126899) | No Known Exploit |
|  | Access of Resource Using Incompatible Type ('Type Confusion')
[SNYK-UBUNTU2204-OPENSSL-3314792](https://snyk.io/vuln/SNYK-UBUNTU2204-OPENSSL-3314792) | No Known Exploit |
|  | CVE-2022-4415
[SNYK-UBUNTU2204-SYSTEMD-3180311](https://snyk.io/vuln/SNYK-UBUNTU2204-SYSTEMD-3180311) | No Known Exploit |
|  | Out-of-bounds Read
[SNYK-UBUNTU2204-TAR-3261138](https://snyk.io/vuln/SNYK-UBUNTU2204-TAR-3261138) | No Known Exploit |
---
**Note:** _You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs._
For more information: 
🧐 [View latest project report](https://app.snyk.io/org/alcion/project/79a3dd06-1da0-4ec7-a75f-f901c70a6f83?utm_source=github-enterprise&utm_medium=referral&page=fix-pr)
🛠 [Adjust project settings](https://app.snyk.io/org/alcion/project/79a3dd06-1da0-4ec7-a75f-f901c70a6f83?utm_source=github-enterprise&utm_medium=referral&page=fix-pr/settings)
[//]: # 'snyk:metadata:{"prId":"efdea96b-cf81-4860-95a4-0c58e70eb77a","prPublicId":"efdea96b-cf81-4860-95a4-0c58e70eb77a","dependencies":[{"name":"ubuntu","from":"latest","to":"22.10"}],"packageManager":"dockerfile","projectPublicId":"79a3dd06-1da0-4ec7-a75f-f901c70a6f83","projectUrl":"https://app.snyk.io/org/alcion/project/79a3dd06-1da0-4ec7-a75f-f901c70a6f83?utm_source=github-enterprise&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-UBUNTU2204-TAR-3261138","SNYK-UBUNTU2204-OPENSSL-3314792","SNYK-UBUNTU2204-KRB5-3126899","SNYK-UBUNTU2204-SYSTEMD-3180311"],"upgrade":["SNYK-UBUNTU2204-KRB5-3126899","SNYK-UBUNTU2204-KRB5-3126899","SNYK-UBUNTU2204-OPENSSL-3314792","SNYK-UBUNTU2204-SYSTEMD-3180311","SNYK-UBUNTU2204-TAR-3261138"],"isBreakingChange":false,"env":"prod","prType":"fix","templateVariants":["updated-fix-title"],"priorityScoreList":[null,null,null,null],"remediationStrategy":"vuln"}'
---
**Learn how to fix vulnerabilities with free interactive lessons:**
🦉 [Learn about vulnerability in an interactive lesson of Snyk Learn.](https://learn.snyk.io/?loc=fix-pr)
---
docker/Dockerfile | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/docker/Dockerfile b/docker/Dockerfile
index 48238f2ce..cae074692 100644
--- a/docker/Dockerfile
+++ b/docker/Dockerfile
@@ -20,7 +20,7 @@ ARG TARGETARCH
RUN GOOS=${TARGETOS} GOARCH=${TARGETARCH} go build -o /corso .
## Deploy
-FROM ubuntu:latest
+FROM ubuntu:22.10
COPY --from=build /corso /