Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Normal
Fix Version/s: CNV v4.16.0
Affects Version/s: None
Component/s: CNV Storage
Labels:
- fabiand-testrun-set-fixversion

Story Points:
1
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Epic Link:
cnv-storage-technical-debt-4.16
Component Fix Version(s):
CNV v4.14.5.rhel9-75
[QE] How to address?:
---
[QE] Why QE missed?:
---
Market:

Sprint:
Storage Core Sprint 250, Storage Core Sprint 251, Storage Core Sprint 252

Regression:
No

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

containerized-data-importer project contains high vulnerabilities [1] [2] "Cross-site Scripting (XSS)" in file ‎pkg/uploadproxy/uploadproxy.go in branch release-v1.57

[1] https://app.snyk.io/org/red-hat-openshift-virtualisation/project/98d0e72b-2f61-45a7-9424-66d82411497c#issue-7f71d965-eddb-473a-a416-36a5cfc4e912
[2] https://app.snyk.io/org/red-hat-openshift-virtualisation/project/98d0e72b-2f61-45a7-9424-66d82411497c#issue-e1d07d7d-c085-40fd-8af1-39d08472dc3c

is related to

CNV-36322 Tracker of SAST Issues

links to

RHEA-2023:122979 OpenShift Virtualization 4.16.0 Images

Assignee:: Alvaro Romero

Reporter:: Karel Simon

QA Contact:: Dalia Frank

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Due:: 2024/01/07

Created:: 2023/12/07 1:04 PM

Updated:: 2024/07/10 12:41 PM

Resolved:: 2024/07/10 12:41 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates