Disable the mod_lua.so module

Disable the mod_lua.so module to address CVE-2021-44790. See https://access.redhat.com/security/cve/cve-2021-44790.
docker · Dec 23, 2021 · 6fb4371 · 6fb4371
1 parent bc47b4b
commit 6fb4371
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/comanage-registry-internet2-tier/Dockerfile b/comanage-registry-internet2-tier/Dockerfile
@@ -112,7 +112,8 @@ RUN cd /etc/httpd/conf.d \
     && ln -s ${COMANAGE_REGISTRY_DIR}/app/webroot registry \
     && rm -rf ${COMANAGE_REGISTRY_DIR}/local/* \
     && chown -R apache:apache ${COMANAGE_REGISTRY_DIR}/app/tmp \
-    && rm -f /etc/shibboleth/shibboleth2.xml
+    && rm -f /etc/shibboleth/shibboleth2.xml \
+    && rm -f /etc/httpd/conf.modules.d/mod_lua.so
 
 # Allow values for first administrator bootstrapped into the
 # platform to be specified at image build time, in addition to