Disable mod_lua to address CVE-2021-44790

Disable the mod_lua module to address CVE-2021-44790. See https://nvd.nist.gov/vuln/detail/CVE-2021-44790
docker · Jan 5, 2022 · 1deb6fa · 1deb6fa
1 parent f9c8464
commit 1deb6fa
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/comanage-match-internet2-tap/Dockerfile b/comanage-match-internet2-tap/Dockerfile
@@ -107,7 +107,8 @@ RUN cd /etc/httpd/conf.d \
     && ln -s ${COMANAGE_MATCH_DIR}/app/webroot match \
     && rm -rf ${COMANAGE_MATCH_DIR}/local/* \
     && chown -R apache:apache ${COMANAGE_MATCH_DIR}/app/tmp \
-    && rm -f /etc/shibboleth/shibboleth2.xml
+    && rm -f /etc/shibboleth/shibboleth2.xml \
+    && rm -f /etc/httpd/conf.modules.d/mod_lua.so
 
 # Allow value for first administrator bootstrapped into the
 # platform to be specified at image build time, in addition to