Skip to content

Antalya 26.1: Bump alpine to 3.23#1488

Closed
zvonand wants to merge 1 commit intoantalya-26.1from
fix/antalya-26.1/bump-alpine-3.23
Closed

Antalya 26.1: Bump alpine to 3.23#1488
zvonand wants to merge 1 commit intoantalya-26.1from
fix/antalya-26.1/bump-alpine-3.23

Conversation

@zvonand
Copy link
Collaborator

@zvonand zvonand commented Mar 8, 2026

Changelog category (leave one):

  • Build/Testing/Packaging Improvement

Changelog entry (a user-readable short description of the changes that goes to CHANGELOG.md):

Bump Alpine to 3.23, fix CVE-2026-22184

CI/CD Options

Exclude tests:

  • Fast test
  • Integration Tests
  • Stateless tests
  • Stateful tests
  • Performance tests
  • All with ASAN
  • All with TSAN
  • All with MSAN
  • All with UBSAN
  • All with Coverage
  • All with Aarch64
  • All Regression
  • Disable CI Cache

Regression jobs to run:

  • Fast suites (mostly <1h)
  • Aggregate Functions (2h)
  • Alter (1.5h)
  • Benchmark (30m)
  • ClickHouse Keeper (1h)
  • Iceberg (2h)
  • LDAP (1h)
  • Parquet (1.5h)
  • RBAC (1.5h)
  • SSL Server (1h)
  • S3 (2h)
  • Tiered Storage (2h)

@github-actions
Copy link

github-actions bot commented Mar 8, 2026

Workflow [PR], commit [83bfad7]

@zvonand
Copy link
Collaborator Author

zvonand commented Mar 8, 2026

We haven't seen this "CVE" for a while, and now it is back. Ithas a "disputed" status, and not critical: https://nvd.nist.gov/vuln/detail/CVE-2026-22184

@strtgbb maybe we are using some outdated data in grype scanner?

This CVE can be further ignored.

@zvonand zvonand closed this Mar 8, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@zvonand