Opened 3 years ago
Closed 3 years ago
#2659 closed task (fixed)
Upgrade nginx proxy servers on osgeo3, osgeo4, osgeo7 to Ubuntu 20.04, nginx 1.17+
| Reported by: | robe | Owned by: | |
|---|---|---|---|
| Priority: | normal | Milestone: | Sysadmin Contract 2021-II |
| Component: | SysAdmin | Keywords: | |
| Cc: |
Description
Per https://ubuntu.com/security/CVE-2019-20372
we are running version 1.14 of nginx (released with Ubuntu 18.04)
Need to upgrade to more easily mitigate https://ubuntu.com/security/CVE-2019-20372.
Will test on osgeo4 first.
Change History (5)
comment:1 by , 3 years ago
comment:3 by , 3 years ago
Okay looks like osgeo3-nginx is running debian 10 and though it's running 1.14.2, looks like debian has remediated that release for this CVE https://security-tracker.debian.org/tracker/CVE-2019-20372 so not update is required.
I'll take care of osgeo7 this coming weekend.
comment:5 by , 3 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
Done upgrading osgeo7 nginx container - from Ubuntu 18.04 -> Ubuntu 20.04.3 and from nginx 1.14 to nginx version: nginx/1.18.0 (Ubuntu)
Note:
See TracTickets
for help on using tickets.
Done for osgeo4 osgeo4-nginx --