DEV Community

Cover image for πŸ›‘οΈ Is Redmine affected by CVE-2022-32209 ?
opt-nc profile image adriens
adriens for opt-nc

Posted on

πŸ›‘οΈ Is Redmine affected by CVE-2022-32209 ?

#security #docker #devops #ruby

❔ About

Last week I got the following question :

"Do we have running RoR applications ? I saw a Post... are we affected by CVE-2022-32209 ?"
Image description

πŸ‘‰ The post is about how fast we could answer the questions.

First answer :

"Yes, we are running a Redmine instance and are up-to-date with the redmine:latest Docker Image"

The rest of the answer is coming below.

πŸ›‘οΈ Security scan

To answer if we are affected, the question can be answered within a single line of code, thanks to grype :

grype redmine:latest \
    | grep CVE-2022-32209 \
    | wc -l
Enter fullscreen mode Exit fullscreen mode

See it live :

πŸ“° About Redmine

Redmine is a great tool which is...

"free and open source, web-based project management and issue tracking tool. It allows users to manage multiple projects"

Image description

Top comments (1)

Collapse
 
adriens profile image
adriens

Read next

peranv profile image

πŸ” How to Implement OAuth 2.0 Authentication in ASP.NET Core with External APIs

Esperanza Najera -

boris_burakovski_c7420552 profile image

Understanding Security Clearance for IT Jobs

Boris Burakovski -

msrabon profile image

Beginner’s Guide: Build, Push, and Deploy Docker Image with GitHub Actions

Md. Abu Raihan Srabon -

itechburner profile image

7 Ways to Boost Your Cybersecurity Career with CISSP Certification

Steve Smith -