Fix CVE-2024-32002, CVE-2024-37371, CVE-2024-45491, CVE-2024-45492

[EliMoshkovich]

Upgrade system packages in Docker images to address security vulnerabilities:

• git: CVE-2024-32002 (RCE via malicious submodules)
• libexpat1/expat: CVE-2024-45491, CVE-2024-45492 (integer overflow)
• libkrb5-3/krb5-libs: CVE-2024-37371 (invalid memory reads in GSS tokens)

Applied to both Debian (bookworm) and Alpine variants.

Fixes Issue

Changes proposed

Check List (Check all the applicable boxes)

• I sign off on contributing this submission to open-source
• My code follows the code style of this project.
• My change requires changes to the documentation.
• I have updated the documentation accordingly.
• All new and existing tests passed.
• This PR does not contain plagiarized content.
• The title of my pull request is a short description of the requested changes.

Screenshots

Note to reviewers

[linear]

PER-13753 Calix - fix opal-server CVEs

[netlify]

✅ Deploy Preview for opal-docs canceled.

Name	Link
🔨 Latest commit	009023d
🔍 Latest deploy log	https://app.netlify.com/projects/opal-docs/deploys/69710ee17e23b60008a2523e

[zeevmoney]

Irrelevant, needs to be fixed in another way.