Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Major
Fix Version/s: 3.9.1.GA
Affects Version/s: None
Component/s: productization: build & internals
Labels:
None

Blocked:
False
Blocked Reason:
None
Ready:
False
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Links:

Code, machine exec and operator are all B grade in the advisory listing CVEs that don't appear to be tracked in JIRA so I'm listing them here.

Operator:
Affects all 3:
https://access.redhat.com/security/cve/CVE-2023-4527 (same)
https://access.redhat.com/security/cve/CVE-2023-4806 (same)
https://access.redhat.com/security/cve/CVE-2023-4813 (Same as 4911 I'm going through these backwards)
https://access.redhat.com/security/cve/CVE-2023-4911 (Resolved but not being found because of text matching issue)

Affects Machineexec and Operator:
https://access.redhat.com/security/cve/CVE-2023-44487 (Resolved, but there's an issue with container grading at the moment that's misjudging the version).

links to

eclipse-che/che-machine-exec#271: Update rpms from ubi8-minimal (#270)

eclipse-che/che-operator#1775: Add auto-update for rpms in ubi8-minimal for CRW-4977

Assignee:: Samantha Dawley

Reporter:: Samantha Dawley

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2023/11/01 7:38 PM

Updated:: 2024/02/16 12:26 AM

Resolved:: 2023/11/07 12:32 AM