-
Story
-
Resolution: Unresolved
-
Critical
-
ACM 2.9.3
Description of problem:
Need to ensure that CVE-2023-45288 is patched for all App/Cluster LC images:
upgrade go pkg golang.org/x/net to v0.23.0 or above
app lifecycle repos:
https://github.com/stolostron/multicloud-operators-subscription
https://github.com/stolostron/multicloud-operators-channel
https://github.com/stolostron/multicloud-operators-application
https://github.com/stolostron/multicloud-integrations
https://github.com/stolostron/cluster-permission
cluster lifecycle repos:
https://github.com/stolostron/cluster-curator-controller
https://github.com/stolostron/provider-credential-controller
https://github.com/stolostron/cluster-image-set-controller
https://github.com/stolostron/clusterclaims-controller
Version-Release number of selected component (if applicable):
How reproducible:
Steps to Reproduce:
- ...