Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Normal
Fix Version/s: CNV v4.16.0
Affects Version/s: None
Component/s: CNV Storage
Labels:
- fabiand-testrun-set-fixversion

Story Points:
1
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Epic Link:
cnv-storage-technical-debt-4.16
Component Fix Version(s):
CNV v4.13.8.rhel9-427
[QE] How to address?:
---
[QE] Why QE missed?:
---
Market:

Sprint:
Storage Core Sprint 250, Storage Core Sprint 251, Storage Core Sprint 252

Regression:
No

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

containerized-data-importer project contains high vulnerabilities [1] [2] [3] "Cross-site Scripting (XSS)" in file ‎pkg/uploadproxy/uploadproxy.go in branch release-v1.56

[1] https://app.snyk.io/org/red-hat-openshift-virtualisation/project/a80f6fd4-cc6c-4c94-aa84-62d403a0c94d#issue-23a8caf0-5e87-4d2c-b325-ba7d649422b9
[2] https://app.snyk.io/org/red-hat-openshift-virtualisation/project/a80f6fd4-cc6c-4c94-aa84-62d403a0c94d#issue-23b1db81-6805-4dcb-ba1f-1cbd01367e40
[3] https://app.snyk.io/org/red-hat-openshift-virtualisation/project/a80f6fd4-cc6c-4c94-aa84-62d403a0c94d#issue-8ce55a7e-128c-43c0-a6c2-3788e96a4cf2

is related to

CNV-36322 Tracker of SAST Issues

links to

RHEA-2023:122979 OpenShift Virtualization 4.16.0 Images

Assignee:: Alvaro Romero

Reporter:: Karel Simon

QA Contact:: Dalia Frank

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Due:: 2024/01/07

Created:: 2023/12/07 1:06 PM

Updated:: 2024/07/10 12:41 PM

Resolved:: 2024/07/10 12:41 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates