Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add fixes for CVE-2024-5535 and CVE-2024-24790 #18

Merged
merged 1 commit into from
Jul 27, 2024
Merged

Add fixes for CVE-2024-5535 and CVE-2024-24790 #18

merged 1 commit into from
Jul 27, 2024

Conversation

kshave
Copy link
Contributor

@kshave kshave commented Jul 18, 2024

Description

CVE-2024-5535

CVE-2024-24790

Type of Change

  • Bug Fix
  • New Feature
  • Breaking Change
  • Refactor
  • Documentation
  • Other (please describe)

Vulnerability Fixing

Checklist

  • I have read the contributing guidelines
  • Existing issues have been referenced (where applicable)
  • I have verified this change is not present in other open pull requests
  • Functionality is documented
  • All code style checks pass
  • New code contribution is covered by automated tests
  • All new and existing tests pass

@kshave
Add fixes for CVE-2024-5535 and CVE-2024-24790
f2ef79d 
CVE-2024-5535
- alpine openssl cirical vulnerability fixes by requring openssl version > 3.1.6-r0
CVE-2024-24790
- various 'Is' methods not working as expected, fixed by bumping builder image to golang:1.22.5 to include backported fix.
@bakshi41c bakshi41c merged commit 91bf480 into cisco-open:main Jul 27, 2024
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bakshi41c bakshi41c bakshi41c approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@kshave @bakshi41c