From f69e9251a583bd0629151ce4c1dfe600117bc937 Mon Sep 17 00:00:00 2001 From: Michael Klishin Date: Tue, 1 Apr 2025 19:02:33 -0400 Subject: [PATCH 1/2] Erlang/OTP: disable SNMP support the SNMP app is not used by RabbitMQ. Team RabbitMQ has removed SNMP from our zero dependency Erlang RPM to reduce the number of dependencies with known CVEs that show up on various scans. I suggest that the community Docker image follow suit. --- Dockerfile-alpine.template | 1 + Dockerfile-ubuntu.template | 1 + 2 files changed, 2 insertions(+) diff --git a/Dockerfile-alpine.template b/Dockerfile-alpine.template index cb0b8c49..92d29f1b 100644 --- a/Dockerfile-alpine.template +++ b/Dockerfile-alpine.template @@ -180,6 +180,7 @@ RUN set -eux; \ --without-observer \ --without-odbc \ --without-reltool \ + --without-snmp \ --without-ssh \ --without-tftp \ --without-wx \ diff --git a/Dockerfile-ubuntu.template b/Dockerfile-ubuntu.template index 9f9b0747..07aee153 100644 --- a/Dockerfile-ubuntu.template +++ b/Dockerfile-ubuntu.template @@ -188,6 +188,7 @@ RUN set -eux; \ --without-observer \ --without-odbc \ --without-reltool \ + --without-snmp \ --without-ssh \ --without-tftp \ --without-wx \ From 2e887a55341ce61503fda52153b2b6808f539828 Mon Sep 17 00:00:00 2001 From: Michael Klishin Date: Tue, 1 Apr 2025 19:12:40 -0400 Subject: [PATCH 2/2] Run ./apply-templates.sh --- 3.13/alpine/Dockerfile | 1 + 3.13/ubuntu/Dockerfile | 1 + 4.0/alpine/Dockerfile | 1 + 4.0/ubuntu/Dockerfile | 1 + 4.1-rc/alpine/Dockerfile | 1 + 4.1-rc/ubuntu/Dockerfile | 1 + 6 files changed, 6 insertions(+) diff --git a/3.13/alpine/Dockerfile b/3.13/alpine/Dockerfile index 5abee307..8b36adeb 100644 --- a/3.13/alpine/Dockerfile +++ b/3.13/alpine/Dockerfile @@ -173,6 +173,7 @@ RUN set -eux; \ --without-observer \ --without-odbc \ --without-reltool \ + --without-snmp \ --without-ssh \ --without-tftp \ --without-wx \ diff --git a/3.13/ubuntu/Dockerfile b/3.13/ubuntu/Dockerfile index cc3aae9c..ce738caa 100644 --- a/3.13/ubuntu/Dockerfile +++ b/3.13/ubuntu/Dockerfile @@ -179,6 +179,7 @@ RUN set -eux; \ --without-observer \ --without-odbc \ --without-reltool \ + --without-snmp \ --without-ssh \ --without-tftp \ --without-wx \ diff --git a/4.0/alpine/Dockerfile b/4.0/alpine/Dockerfile index aeaa28c1..26781021 100644 --- a/4.0/alpine/Dockerfile +++ b/4.0/alpine/Dockerfile @@ -173,6 +173,7 @@ RUN set -eux; \ --without-observer \ --without-odbc \ --without-reltool \ + --without-snmp \ --without-ssh \ --without-tftp \ --without-wx \ diff --git a/4.0/ubuntu/Dockerfile b/4.0/ubuntu/Dockerfile index 32b4ac3f..499061fa 100644 --- a/4.0/ubuntu/Dockerfile +++ b/4.0/ubuntu/Dockerfile @@ -172,6 +172,7 @@ RUN set -eux; \ --without-observer \ --without-odbc \ --without-reltool \ + --without-snmp \ --without-ssh \ --without-tftp \ --without-wx \ diff --git a/4.1-rc/alpine/Dockerfile b/4.1-rc/alpine/Dockerfile index 2de1f122..d02dd45a 100644 --- a/4.1-rc/alpine/Dockerfile +++ b/4.1-rc/alpine/Dockerfile @@ -173,6 +173,7 @@ RUN set -eux; \ --without-observer \ --without-odbc \ --without-reltool \ + --without-snmp \ --without-ssh \ --without-tftp \ --without-wx \ diff --git a/4.1-rc/ubuntu/Dockerfile b/4.1-rc/ubuntu/Dockerfile index 682725c2..9dea7ec0 100644 --- a/4.1-rc/ubuntu/Dockerfile +++ b/4.1-rc/ubuntu/Dockerfile @@ -172,6 +172,7 @@ RUN set -eux; \ --without-observer \ --without-odbc \ --without-reltool \ + --without-snmp \ --without-ssh \ --without-tftp \ --without-wx \