Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

upgrade gem grpc pacakge to apply cve fixes #3845

Merged
merged 1 commit into from
Jul 24, 2023
Merged

upgrade gem grpc pacakge to apply cve fixes #3845

merged 1 commit into from
Jul 24, 2023

Conversation

cpanato
Copy link
Member

@cpanato cpanato commented Jul 24, 2023
edited
Loading

  • kube-fluentd-operator: fix a few CVEs
grpc     1.52.0     1.53.0    gem   GHSA-6628-q6j9-w8vg  High
grpc     1.52.0     1.53.0    gem   GHSA-9hxf-ppjv-w6rq  Medium
grpc     1.52.0     1.53.0    gem   GHSA-cfgp-2977-2fmm  High

Related: wolfi-dev/advisories#102

Pre-review Checklist

For new package PRs only

  • This PR is marked as fixing a pre-existing package request bug
    • Alternatively, the PR is marked as related to a pre-existing package request bug, such as a dependency
  • REQUIRED - The package is available under an OSI-approved or FSF-approved license
  • REQUIRED - The version of the package is still receiving security updates

For security-related PRs

  • The security fix is recorded in the advisories repo

@cpanato
upgrade gem grpc pacakge to apply cve fixes
4430f52 
Signed-off-by: cpanato <ctadeu@gmail.com>
@cpanato cpanato marked this pull request as ready for review July 24, 2023 15:03
@cpanato cpanato requested a review from a team as a code owner July 24, 2023 15:03
@dlorenc dlorenc added this pull request to the merge queue Jul 24, 2023
Merged via the queue into wolfi-dev:main with commit 2cfc8b2 Jul 24, 2023
@cpanato cpanato deleted the patch-fluent-plugin-google-cloud branch July 25, 2023 08:50
@philroche philroche mentioned this pull request Aug 29, 2024
Merged
@philroche philroche mentioned this pull request Oct 1, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dlorenc dlorenc dlorenc approved these changes

@imjasonh imjasonh Awaiting requested review from imjasonh imjasonh was automatically assigned from wolfi-dev/wolfi-repository-maintainers

@joshrwolf joshrwolf Awaiting requested review from joshrwolf joshrwolf was automatically assigned from wolfi-dev/wolfi-repository-maintainers

@rawlingsj rawlingsj Awaiting requested review from rawlingsj

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@cpanato @dlorenc