Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Undefined
Fix Version/s: 4.18.z
Affects Version/s: 4.18
Component/s: Multi-Arch / IBM P and Z
Labels:
None

Activity Type:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Story Points:
None
Severity:
None
Regression:
None

Target Backport Versions:
None
Target Version:

4.18.0
Release Blocker:
None
Sprint:
None

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Release Note Status:
In Progress
Release Note Type:
Release Note Not Required
Release Note Text:
None

Escape Reason:
None
Escape Impact:
None
Corrective Measures:
None
SDLC stage when should've been found:
None

Description of problem:

For CVE-2025-22868, the minimum required golang version is 1.23 as the golang.org/x/oauth2 defines the same. Bumping the builder image will help update the package to mitigate the CVE.

depends on

OCPBUGS-70003 Update builder image to golang version to 1.23

Closed

is cloned by

OCPBUGS-70003 Update builder image to golang version to 1.23

Closed

links to

openshift/ibm-powervs-block-csi-driver#103: OCPBUGS-70002: Update builder image's golang version to 1.23

Assignee:: Kishen V

Reporter:: Kishen V

Need Info From:: None

Contributors:: None

QA Contact:: None

Doc Contact:: None

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2025/12/19 11:28 PM

Updated:: 2025/12/20 8:42 AM