Default backrest icarus version image use vulnerable JRE version

Default backrest version is ["ghcr.io/cscetbon/instaclustr-icarus:1.1.3"](https://github.com/cscetbon/casskop/blob/v2.2.1/api/v2/cassandracluster_types.go#L27)

It uses openjdk 11.0.16 which is vulnerable to [CVE-2023-21930](https://nvd.nist.gov/vuln/detail/CVE-2023-21930)

Latest icarus image version is [2.0.4](https://github.com/cscetbon/casskop/pkgs/container/instaclustr-icarus)
but it uses same version of openjdk:
```
$ docker run ghcr.io/cscetbon/instaclustr-icarus:2.0.4
...

# in second shell
$  docker exec -it `docker ps | grep icarus | awk '{print $1}'` java -version
openjdk version "11.0.16" 2022-07-19
OpenJDK Runtime Environment (build 11.0.16+8-post-Debian-1deb10u1)
OpenJDK 64-Bit Server VM (build 11.0.16+8-post-Debian-1deb10u1, mixed mode, sharing
```

I'd like to build new image for myself with jdk 11.0.29 and latest icarus binary 3.0.0 but I cannot find Dockerfile for `instaclustr-icarus`. @cscetbon can you please share it?

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Default backrest icarus version image use vulnerable JRE version #189

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Default backrest icarus version image use vulnerable JRE version #189

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions