Merge pull request #98 from Conjur-Enterprise/ubi

szh · GitHub Enterprise · commit e126f5882492 · 2025-11-13T15:50:24.000-05:00
CNJR-11779: Update UBI base image to latest to resolve CVE-2025-6965
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -10,13 +10,16 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 - Nothing should go in this section, please add to the latest unreleased version
   (and update the corresponding date), or add a new version.
 
-## [9.1.0] - 2025-11-10
+## [9.1.0] - 2025-11-13
 
 ### Added
 - Added ability to support localhost as redirect URI in oidc authenticators.
   CNJR-11471
 - Update Go to 1.25 (CONJSE-2067)
 
+### Security
+- Update UBI base image to latest to resolve CVE-2025-6965 (CNJR-11779)
+
 ## [9.0.0] - 2025-09-04
 
 ### Added
diff --git a/Dockerfile b/Dockerfile
@@ -1,4 +1,4 @@
-FROM registry.access.redhat.com/ubi9/ubi-minimal:9.6 AS conjur-cli-go
+FROM registry.access.redhat.com/ubi9/ubi-minimal:latest AS conjur-cli-go
 LABEL org.opencontainers.image.authors="CyberArk Software Ltd."
 
 ENTRYPOINT [ "/usr/local/bin/conjur" ]

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-FROM registry.access.redhat.com/ubi9/ubi-minimal:9.6 AS conjur-cli-go`
	`1`	`+FROM registry.access.redhat.com/ubi9/ubi-minimal:latest AS conjur-cli-go`
`2`	`2`	`LABEL org.opencontainers.image.authors="CyberArk Software Ltd."`
`3`	`3`
`4`	`4`	`ENTRYPOINT [ "/usr/local/bin/conjur" ]`