Bump nginx from 1.25.3-alpine to 1.25.4-alpine in /build (#1580)

* Bump nginx from 1.25.3-alpine to 1.25.4-alpine in /build Bumps nginx from 1.25.3-alpine to 1.25.4-alpine. --- updated-dependencies: - dependency-name: nginx dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> * Remove fixed CVEs --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Luca Comellini <[email protected]>
nginx · Feb 15, 2024 · 7ba56ae · 7ba56ae
1 parent 7596bf7
commit 7ba56ae
Showing 1 changed file with 1 addition and 3 deletions.
diff --git a/build/Dockerfile.nginx b/build/Dockerfile.nginx
@@ -1,5 +1,5 @@
 # syntax=docker/dockerfile:1.6
-FROM nginx:1.25.3-alpine
+FROM nginx:1.25.4-alpine
 
 ARG NJS_DIR
 ARG NGINX_CONF_DIR
@@ -9,8 +9,6 @@ RUN apk add --no-cache libcap \
     && mkdir -p /var/lib/nginx /usr/lib/nginx/modules \
     && setcap 'cap_net_bind_service=+ep' /usr/sbin/nginx \
     && setcap -v 'cap_net_bind_service=+ep' /usr/sbin/nginx \
-    # Update packages for CVE-2023-52425 and CVE-2024-25062
-    && apk --no-cache upgrade libexpat libxml2 \
     && apk del libcap
 
 COPY ${NJS_DIR}/httpmatches.js /usr/lib/nginx/modules/njs/httpmatches.js