Discussion on Critical Security Vulnerabilities in the datahub-gms Docker Image

user-2 · March 4, 2024, 5:26pm

Hi Team,
Looking at the following datahub-gms docker image released three days ago:
https://hub.docker.com/layers/linkedin/datahub-gms/065a290/images/sha256-21e522d1168912ec1795307b6f6897d6110b2d169656adb849e2ec184f44ea73?context=explore|https://hub.docker.com/layers/linkedin/datahub-gms/065a290/images/sha256-21e522d1168[…]5307b6f6897d6110b2d169656adb849e2ec184f44ea73?context=explore

We are seeing many Critical Security Vulnerabilities. Please see attached file.
Our strict Security Compliance has blocked us from using these images.
From our side, we will try to mitigate these issues, and of course, if we find a viable solution we will contribute back to the community.

My question, is any work scheduled from your side to remedy these vulnerabilities? attachment

datahub_team · March 4, 2024, 5:26pm

HI - thank you so much for the report. I’ll forward this to our team & get back to you

Topic		Replies	Views
Changing Default Password and Addressing Vulnerable Docker Images troubleshoot	5	48	April 1, 2024
Custom Implementation and Docker Image Deployment Challenges in Upgrading DataHub all-things-deployment	1	52	March 4, 2024
Troubleshooting GMS Startup Issue with DataHub Upgrade troubleshoot	7	203	April 15, 2024
Addressing 0-day Vulnerability in Base Image Used for Datahub-Actions all-things-deployment	3	53	March 4, 2024
Troubleshooting datahub docker quickstart issues with the team getting-started	3	86	March 4, 2024

Discussion on Critical Security Vulnerabilities in the datahub-gms Docker Image

Related Topics