[Snyk] Security upgrade ubuntu from 22.10 to lunar-20230615 (#11927)

* fix: utils/docker/Dockerfile-cpu to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-UBUNTU2210-SYSTEMD-5721329 - https://snyk.io/vuln/SNYK-UBUNTU2210-SYSTEMD-5721343 - https://snyk.io/vuln/SNYK-UBUNTU2210-SYSTEMD-5721343 - https://snyk.io/vuln/SNYK-UBUNTU2210-SYSTEMD-5721350 - https://snyk.io/vuln/SNYK-UBUNTU2210-SYSTEMD-5721350 * Update Dockerfile-cpu Signed-off-by: Glenn Jocher <glenn.jocher@ultralytics.com> --------- Signed-off-by: Glenn Jocher <glenn.jocher@ultralytics.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io>
2025-06-03 14:49:29 +08:00 · 2023-08-01 14:42:08 +02:00 · 2023-08-01 14:42:08 +02:00 · 05e4c0543b
commit 05e4c0543b
parent 3f76b803da
1 changed files with 7 additions and 6 deletions
--- a/utils/docker/Dockerfile-cpu
+++ b/utils/docker/Dockerfile-cpu
@ -3,18 +3,20 @@
 # Image is CPU-optimized for ONNX, OpenVINO and PyTorch YOLOv5 deployments

 # Start FROM Ubuntu image https://hub.docker.com/_/ubuntu
-FROM ubuntu:22.10
+FROM ubuntu:lunar-20230615

 # Downloads to user config dir
 ADD https://ultralytics.com/assets/Arial.ttf https://ultralytics.com/assets/Arial.Unicode.ttf /root/.config/Ultralytics/

 # Install linux packages
-ENV DEBIAN_FRONTEND noninteractive
-RUN apt update
-RUN TZ=Etc/UTC apt install -y tzdata
-RUN apt install --no-install-recommends -y python3-pip git zip curl htop libgl1-mesa-glx libglib2.0-0 libpython3-dev gnupg
+# g++ required to build 'tflite_support' and 'lap' packages, libusb-1.0-0 required for 'tflite_support' package
+RUN apt update \
+    && apt install --no-install-recommends -y python3-pip git zip curl htop libgl1-mesa-glx libglib2.0-0 libpython3-dev gnupg g++ libusb-1.0-0
 # RUN alias python=python3

+# Remove python3.11/EXTERNALLY-MANAGED or use 'pip install --break-system-packages' avoid 'externally-managed-environment' Ubuntu nightly error
+RUN rm -rf /usr/lib/python3.11/EXTERNALLY-MANAGED
+
 # Install pip packages
 COPY requirements.txt .
 RUN python3 -m pip install --upgrade pip wheel
@ -30,7 +32,6 @@ WORKDIR /usr/src/app
 # Copy contents
 # COPY . /usr/src/app  (issues as not a .git directory)
 RUN git clone https://github.com/ultralytics/yolov5 /usr/src/app
-ENV DEBIAN_FRONTEND teletype


 # Usage Examples -------------------------------------------------------------------------------------------------------