mirror of
https://github.com/kata-containers/kata-containers.git
synced 2025-10-21 11:58:41 +00:00
d01aebebae
In order to avoid providing an image with security issues, let's ensure we run `yum update` as part of our image build process. This is needed as even with the latest CentOS images there may be fix provided by some CVE that's already part of the updates but not yet part of the image. In our case, it's even more needed as the `centos/systemd` image has not been updated for 3 years or so and those are the vulnerabilities found in the current images: https://quay.io/repository/kata-containers/kata-deploy?tab=tags Fixes: #2303 Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>