Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Normal
Fix Version/s: MCE 2.4.0, MCE 2.3.1, MCE 2.5.0, MCE 2.6.0
Affects Version/s: MCE 2.4.0, MCE 2.3.1, MCE 2.5.0, MCE 2.6.0
Component/s: Installer
Labels:
None

Story Points:
1
Blocked:
False
Blocked Reason:
None
Ready:
False
Git Pull Request:
https://github.com/stolostron/backplane-operator/pull/792, https://github.com/stolostron/backplane-operator/pull/793, https://github.com/stolostron/backplane-operator/pull/794, https://github.com/stolostron/backplane-operator/pull/795
Intelligence Requested:
Market:

Sprint:
Installer Sprint 2024-36

Regression:
No

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

In order to fix CVE-2023-45288, it is required to upgrade `golang.org/x/net` to v0.23.0+ for backplane-operator repo. It should cover the releases below:

ACM 2.11 / MCE 2.6
ACM 2.10 / MCE 2.5
ACM 2.9 / MCE 2.4
ACM 2.8 / MCE 2.3

More information can be found https://redhat-internal.slack.com/archives/G010RS588CC/p1717614506464539?thread_ts=1717511402.116909&cid=G010RS588CC

clones

ACM-12136 Upgrade golang.org/x/net of multiclusterhub-operator repo

Closed

is cloned by

ACM-12138 Upgrade golang.org/x/net of discovery repo

Closed

Assignee:: Nathaniel Graham

Reporter:: Disaiah Bennett

QA Contact:: Thuy Nguyen

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2024/06/12 5:26 PM

Updated:: 2024/06/26 4:25 PM

Resolved:: 2024/06/26 4:25 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates