From 8417c88cd51ac31bee0fa48eb4605d5dd9a1ad19 Mon Sep 17 00:00:00 2001
From: Kenny Ho <Kenny.Ho@amd.com>
Date: Tue, 22 Aug 2023 19:53:55 -0400
Subject: [PATCH] Update base image to alpine 3.18.3 to fix vulnerabilities

Fixes CVE-2023-2650
---
 Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 67eb0015..6919d180 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -11,7 +11,7 @@
 #  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #  See the License for the specific language governing permissions and
 #  limitations under the License.
-FROM docker.io/golang:1.19.6-alpine3.17
+FROM docker.io/golang:1.19.12-alpine3.18
 RUN apk --no-cache add git pkgconfig build-base libdrm-dev
 RUN apk --no-cache add hwloc-dev --repository=http://dl-cdn.alpinelinux.org/alpine/edge/community
 RUN mkdir -p /go/src/github.com/RadeonOpenCompute/k8s-device-plugin
@@ -20,7 +20,7 @@ WORKDIR /go/src/github.com/RadeonOpenCompute/k8s-device-plugin/cmd/k8s-device-pl
 RUN go install \
     -ldflags="-X main.gitDescribe=$(git -C /go/src/github.com/RadeonOpenCompute/k8s-device-plugin/ describe --always --long --dirty)" 
 
-FROM alpine:3.17.3
+FROM alpine:3.18.3
 LABEL \
     org.opencontainers.image.source="https://github.com/RadeonOpenCompute/k8s-device-plugin" \
     org.opencontainers.image.authors="Kenny Ho <Kenny.Ho@amd.com>" \
-- 
GitLab