diff options
author | Dan Timoney <dtimoney@att.com> | 2021-12-15 15:25:30 -0500 |
---|---|---|
committer | Dan Timoney <dtimoney@att.com> | 2021-12-15 15:25:30 -0500 |
commit | 3d0530cf0fdaf671799642a1cb82a199e5590433 (patch) | |
tree | 7244bfb250b761a37523745f56ea1bda0752716d /installation/ueb-listener | |
parent | 09fcafbe6a01ae18abaf7211a21e1bd1cca10431 (diff) |
Remediate log4shell vulnerability
Remove JndiLookup.class to remediate log4shell vulnerability
Issue-ID: CCSDK-3556
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: Iadfd1f01bd7949a1a60d67bb9dca121024adaeb8
Former-commit-id: a2dd8e00057c772e57d8ddf4af15c8e942f66247
Diffstat (limited to 'installation/ueb-listener')
-rw-r--r-- | installation/ueb-listener/src/main/docker/Dockerfile | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/installation/ueb-listener/src/main/docker/Dockerfile b/installation/ueb-listener/src/main/docker/Dockerfile index 88d31e31..0df998be 100644 --- a/installation/ueb-listener/src/main/docker/Dockerfile +++ b/installation/ueb-listener/src/main/docker/Dockerfile @@ -1,12 +1,18 @@ # Base alpine with added packages needed for open ecomp FROM onap/ccsdk-alpine-j11-image:${ccsdk.docker.version} AS stage0 - +USER root ENV SDNC_CONFIG_DIR /opt/onap/sdnc/data/properties # copy deliverables to opt COPY opt /opt +# Remediate log4shell vuln +RUN apk add zip +RUN zip -q -d /opt/onap/sdnc/ueb-listener/lib/log4j-core-*.jar org/apache/logging/log4j/core/lookup/JndiLookup.class + + + # End of stage0 FROM onap/ccsdk-alpine-j11-image:${ccsdk.docker.version} |