-
Bug
-
Resolution: Done-Errata
-
Critical
-
4.16
This is a clone of issue OCPBUGS-34037. The following is the description of the original issue:
—
Open Github Security Advisory for: containers/image
https://github.com/advisories/GHSA-6wvf-f2vw-3425
The ARO SRE team became aware of this advisory against our installer fork. Upstream installer is also pinning a vulnerable version of containerd.
Advisory recommends to update to versions 5.30.1
- blocks
-
OCPBUGS-35586 GHSA-6wvf-f2vw-3425: ose-installer-container: containers/image allows unexpected authenticated registry accesses
- Closed
- clones
-
OCPBUGS-34037 GHSA-6wvf-f2vw-3425: ose-installer-container: containers/image allows unexpected authenticated registry accesses
- Closed
- is blocked by
-
OCPBUGS-34037 GHSA-6wvf-f2vw-3425: ose-installer-container: containers/image allows unexpected authenticated registry accesses
- Closed
- is cloned by
-
OCPBUGS-35586 GHSA-6wvf-f2vw-3425: ose-installer-container: containers/image allows unexpected authenticated registry accesses
- Closed
- links to
-
RHBA-2024:4156 OpenShift Container Platform 4.16.z bug fix update