Go (or Golang) is one of the most loved and wanted programming
languages, according to Stack Overflow’s
2022 Developer Survey.Thanks to its smaller binary sizes
vs.many other languages, developers often use Go for containerized
application development. Mohammad Quanit explored the
connection between Docker and Go during his Community All-Hands
session.Mohammad shared how to Dockerize a basic Go application
while exploring each core component involved in the process:
Follow along as we dive into these containerization
We’re excited to announce that Docker Hub can now help you
distribute any type of application artifact!You can now keep
everything in one place without having to leverage multiple
registries.
Before today, you could only use Docker Hub to store and
distribute container images — or artifacts usable by container
runtimes.This became a limitation of our platform, since container
image distribution is just the tip of the application delivery
iceberg.Nowadays, modern application delivery requires numerous
types of artifacts:
Docker Captains are select members of the community that are both
experts in their field and passionate about sharing their Docker
knowledge with others.“Docker Captains Take 5” is a regular blog
series where we get a closer look at our Captains and ask them the
same broad set of questions ranging from what their best Docker tip
is to whether they prefer cats or dogs (personally, we like
whales
and turtles over
here).Today, we’re interviewing Nelson, one of our newest
Captains.He’s the founder
The OpenSSL Project will release a security fix (OpenSSL version
3.0.7) for a new-and-disclosed CVE on Tuesday, November 1,
2022.This CVE is categorized as “CRITICAL”
and affects all OpenSSL versions after 3.0. Docker estimates about
1,000 image repositories could be impacted across various Docker
Official Images and Docker Verified Publisher images.This includes
images that are based on versions of Debian 12, Ubuntu 22.04, and
Redhat Enterprise Linux 9+ which install 3.x versions of OpenSSL.
We’re
Update:01 November 2022 12:57 PM PDT The OpenSSL
Project has officially disclosed two high-severity
vulnerabilities:CVE-2022-3602 and CVE-2022-3786.These CVEs impact
all OpenSSL versions after 3.0.The sole exception is version 3.0.7,
which contains fixes for those latest vulnerabilities.Previously,
these CVEs were thought to be “critical.”
–––––––––––––––––––––––––––––––––––––––––––––––––––––––––––––––––
Our title and original post below (written October 27th,
2022) have been updated:
What are they?
CVE-2022-3602 is an arbitrary 4-byte stack buffer overflow that
could trigger crashes