Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Critical
Fix Version/s: None
Affects Version/s: 4.16
Component/s: Installer / openshift-installer
Labels:

Severity:
Critical
Regression:
No
Release Blocker:
Rejected
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Release Note Text:
N/A
Release Note Type:
CVE - Common Vulnerabilities and Exposures
Release Note Status:
In Progress
Target Version:

4.17.0
Target Backport Versions:

4.13.z, 4.12.z, 4.14.z, 4.15.z, 4.16.0

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Open Github Security Advisory for: containers/image

https://github.com/advisories/GHSA-6wvf-f2vw-3425

The ARO SRE team became aware of this advisory against our installer fork. Upstream installer is also pinning a vulnerable version of containerd.

Advisory recommends to update to versions 5.30.1

blocks

OCPBUGS-35282 GHSA-6wvf-f2vw-3425: ose-installer-container: containers/image allows unexpected authenticated registry accesses

Closed

OCPBUGS-35527 GHSA-6wvf-f2vw-3425: ose-installer-container: containers/image allows unexpected authenticated registry accesses

Closed

is cloned by

OCPBUGS-35527 GHSA-6wvf-f2vw-3425: ose-installer-container: containers/image allows unexpected authenticated registry accesses

Closed

links to

openshift/installer#8564: OCPBUGS-34037: bump github.com/container/images for CVE fix

RHEA-2024:3718 OpenShift Container Platform 4.17.z bug fix update

Assignee:: Rafael Fonseca dos Santos

Reporter:: Miguel Abad Perez

QA Contact:: Gaoyun Pei

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Created:: 2024/05/21 2:24 PM

Updated:: 2024/10/01 5:34 PM

Resolved:: 2024/10/01 5:34 PM