Merge pull request #583 from IABTechLab/gdm-UID2-6115-hotfix

gmsdelmundo · web-flow · commit 43348b1c725d · 2025-10-03T09:47:56.000+08:00
Fixed vulnerabilities
diff --git a/.trivyignore b/.trivyignore
@@ -2,9 +2,6 @@
 # See https://aquasecurity.github.io/trivy/v0.35/docs/vulnerability/examples/filter/ 
 # for more details
 
-# UID2-5186
-CVE-2024-8176 exp:2025-06-03
-
 # This is a false positive CVE
 # See: UID2-5492
 CVE-2022-37767
@@ -13,5 +10,8 @@ CVE-2022-37767
 # See: UID2-5493
 CVE-2025-1686
 
-# UID2-5864
-CVE-2025-6965 exp:2025-10-01
+# UID2-6097
+CVE-2025-59375 exp:2025-12-15
+
+# UID2-6128
+CVE-2025-55163 exp:2025-10-30
diff --git a/Dockerfile b/Dockerfile
@@ -1,5 +1,5 @@
-# sha from https://hub.docker.com/layers/amd64/eclipse-temurin/21.0.7_6-jre-alpine-3.21/images/sha256-62fa775039897e4420368514ba6c167741f6d45a0de9ff9125bee57e5aca8b75
-FROM eclipse-temurin@sha256:62fa775039897e4420368514ba6c167741f6d45a0de9ff9125bee57e5aca8b75
+# sha from https://hub.docker.com/layers/library/eclipse-temurin/21.0.8_9-jre-alpine-3.22/images/sha256-3408c45e1faee20e4e68808939a75f87efa469b927d20e12309689ead053daba
+FROM eclipse-temurin@sha256:4ca7eff3ab0ef9b41f5fefa35efaeda9ed8d26e161e1192473b24b3a6c348aef
 
 WORKDIR /app
 EXPOSE 8089
