![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 46%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKG%3C/text%3E%3C/svg%3E)
Azure Functions
An Azure service that provides an event-driven serverless compute platform.
5,909 questions
Hello @Kalyan Guntupalli
To patch the MCR Azure Functions Java21 build image, you can follow the steps below:
- Identify the specific version of the MCR Azure Functions Java21 build image that you are using. You can find this information in your Dockerfile or in your deployment configuration.
- Check if there is a patch available for the specific version of the image that you are using. You can check the Azure Policy definitions for Function Apps that use Java to see if there is a policy that requires the use of the latest Java version. If there is, you can update your deployment configuration to use the latest Java version.
- If there is no policy available for the specific version of the image that you are using, you can manually update the image to use the latest Java version. You can do this by updating your Dockerfile to use the latest Java version and rebuilding the image. Regarding the
CVE-2021-26701vulnerability, you should check if there is a patch available for the specific libraries that are affected. If there is, you can update your dependencies to use the patched version of the libraries. If there is no patch available, you should consider using an alternative library that is not affected by the vulnerability.
I hope this helps
I hope that this response has addressed your query and helped you overcome your challenges. If so, please mark this response as Answered. This will not only acknowledge our efforts, but also assist other community members who may be looking for similar solutions.