Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Apply CVE Fix #711

Closed
wants to merge 1 commit into from
Closed

Apply CVE Fix #711

wants to merge 1 commit into from

Conversation

octo-sts[bot]
Copy link

@octo-sts octo-sts bot commented Feb 8, 2025

Grype Scan Summary after updating to 7.4.2-r0-202502050745 
No vulnerabilities found

Prisma Cloud Console Link

View detailed scan results in Prisma Cloud Console

Changes

File Changes 
diff --git a/grype-results.sarif b/grype-results.sarif
index 5bb6c36..47893a7 100644
--- a/grype-results.sarif
+++ b/grype-results.sarif
@@ -6,7 +6,7 @@
       "tool": {
         "driver": {
           "name": "grype",
-          "version": "0.86.1",
+          "version": "0.87.0",
           "informationUri": "https://github.com/anchore/grype"
         }
       },
diff --git a/helm/redis/values.yaml b/helm/redis/values.yaml
index c6098e0..eb9ca65 100644
--- a/helm/redis/values.yaml
+++ b/helm/redis/values.yaml
@@ -9,4 +9,4 @@ master:
 image:
   registry: cgr.dev
   repository: cgr-demo.com/redis-server-bitnami
-  tag: 7.4.1-r0-202412141645
+  tag: 7.4.2-r0-202502050745
diff --git a/pcc_scan_results.json b/pcc_scan_results.json
index 1aac2fd..3135187 100644
--- a/pcc_scan_results.json
+++ b/pcc_scan_results.json
@@ -1,11 +1,11 @@
 {
 	"results": [
 		{
-			"id": "sha256:e023f556edaf4f901d974ad7bc4930a7fc4fab037471a7e5baf488531c68b7de",
-			"name": "cgr.dev/cgr-demo.com/redis-server-bitnami:7.4.1-r0-202412141645",
+			"id": "sha256:5b436b2177d1455f8e8b94ffff5cc56be44b72881011ce009ddda3bd5f6a4441",
+			"name": "cgr.dev/cgr-demo.com/redis-server-bitnami:7.4.2-r0-202502050745",
 			"distro": "Chainguard",
 			"distroRelease": "20230214",
-			"digest": "sha256:7ade4d608dfbcc11d612ae6ec42befb570cbe3262ff19e34c77f37671ef9fc10",
+			"digest": "sha256:7cc8f29c572a85ea5ff9061535537dea35664729d9a894a0913b6d828a6a6e10",
 			"collections": [
 				"All"
 			],
@@ -13,7 +13,7 @@
 				{
 					"type": "os",
 					"name": "wait-for-port",
-					"version": "1.0.8-r2",
+					"version": "1.0.8-r3",
 					"licenses": [
 						"Apache-2.0"
 					]
@@ -21,7 +21,7 @@
 				{
 					"type": "os",
 					"name": "coreutils",
-					"version": "9.5-r3",
+					"version": "9.6-r0",
 					"licenses": [
 						"GPL-3.0-or-later"
 					]
@@ -45,7 +45,7 @@
 				{
 					"type": "os",
 					"name": "libxcrypt",
-					"version": "4.4.36-r8",
+					"version": "4.4.38-r0",
 					"licenses": [
 						"GPL-2.0-or-later AND LGPL-2.1-or-later"
 					]
@@ -61,15 +61,23 @@
 				{
 					"type": "os",
 					"name": "wolfi-baselayout",
-					"version": "20230201-r15",
+					"version": "20230201-r16",
 					"licenses": [
 						"MIT"
 					]
 				},
+				{
+					"type": "os",
+					"name": "redis-7.4",
+					"version": "7.4.2-r0",
+					"licenses": [
+						"SSPL-1.0"
+					]
+				},
 				{
 					"type": "os",
 					"name": "glibc",
-					"version": "2.40-r3",
+					"version": "2.40-r8",
 					"licenses": [
 						"LGPL-2.1-or-later"
 					]
@@ -77,7 +85,7 @@
 				{
 					"type": "os",
 					"name": "openssl",
-					"version": "3.4.0-r4",
+					"version": "3.4.0-r6",
 					"licenses": [
 						"Apache-2.0"
 					]
@@ -85,7 +93,7 @@
 				{
 					"type": "os",
 					"name": "acl",
-					"version": "2.3.2-r4",
+					"version": "2.3.2-r5",
 					"licenses": [
 						"LGPL-2.1-or-later AND GPL-2.0-or-later"
 					]
@@ -93,7 +101,7 @@
 				{
 					"type": "os",
 					"name": "attr",
-					"version": "2.5.2-r4",
+					"version": "2.5.2-r5",
 					"licenses": [
 						"GPL-2.0-or-later"
 					]
@@ -101,7 +109,7 @@
 				{
 					"type": "os",
 					"name": "ncurses",
-					"version": "6.5_p20241006-r4",
+					"version": "6.5_p20241228-r0",
 					"licenses": [
 						"MIT"
 					]
@@ -109,7 +117,7 @@
 				{
 					"type": "os",
 					"name": "gcc",
-					"version": "14.2.0-r6",
+					"version": "14.2.0-r8",
 					"licenses": [
 						"GPL-3.0-or-later WITH GCC-exception-3.1"
 					]
@@ -117,191 +125,183 @@
 				{
 					"type": "os",
 					"name": "ca-certificates",
-					"version": "20241010-r2",
+					"version": "20241121-r1",
 					"licenses": [
 						"MPL-2.0 AND MIT"
 					]
 				},
-				{
-					"type": "os",
-					"name": "redis-7.4",
-					"version": "7.4.1-r0",
-					"licenses": [
-						"SSPL-1.0"
-					]
-				},
 				{
 					"type": "go",
-					"name": "syscall",
-					"version": "1.23.1",
+					"name": "io",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/poll",
-					"version": "1.23.1",
+					"name": "internal/bytealg",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "unique",
-					"version": "1.23.1",
+					"name": "net/netip",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "errors",
-					"version": "1.23.1",
+					"name": "internal/abi",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/abi",
-					"version": "1.23.1",
+					"name": "internal/itoa",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "path/filepath",
-					"version": "1.23.1",
+					"name": "internal/poll",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "os",
-					"version": "1.23.1",
+					"name": "sync",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/runtime/syscall",
-					"version": "1.23.1",
+					"name": "net",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "os/signal",
-					"version": "1.23.1",
+					"name": "errors",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "net",
-					"version": "1.23.1",
+					"name": "time",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/itoa",
-					"version": "1.23.1",
+					"name": "syscall",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "sync/atomic",
-					"version": "1.23.1",
+					"name": "strconv",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "io/fs",
-					"version": "1.23.1",
+					"name": "internal/chacha8rand",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "runtime",
-					"version": "1.23.1",
+					"name": "internal/stringslite",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "sync",
-					"version": "1.23.1",
+					"name": "vendor/golang.org/x/net/dns/dnsmessage",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/byteorder",
-					"version": "1.23.1",
+					"name": "internal/runtime/syscall",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/runtime/atomic",
-					"version": "1.23.1",
+					"name": "path/filepath",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "io",
-					"version": "1.23.1",
+					"name": "runtime/internal/sys",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/chacha8rand",
-					"version": "1.23.1",
+					"name": "sync/atomic",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "time",
-					"version": "1.23.1",
+					"name": "runtime",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "runtime/internal/sys",
-					"version": "1.23.1",
+					"name": "os/signal",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/bytealg",
-					"version": "1.23.1",
+					"name": "io/fs",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "golang.org/x/sys/unix",
-					"version": "v0.21.0",
+					"name": "internal/runtime/atomic",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "net/netip",
-					"version": "1.23.1",
+					"name": "os",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
 					"name": "context",
-					"version": "1.23.1",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "strconv",
-					"version": "1.23.1",
+					"name": "unique",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "vendor/golang.org/x/net/dns/dnsmessage",
-					"version": "1.23.1",
+					"name": "internal/syscall/unix",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/syscall/unix",
-					"version": "1.23.1",
+					"name": "golang.org/x/sys/unix",
+					"version": "v0.21.0",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
 					"type": "go",
-					"name": "internal/stringslite",
-					"version": "1.23.1",
+					"name": "internal/byteorder",
+					"version": "1.23.5",
 					"path": "/usr/bin/wait-for-port"
 				},
 				{
@@ -325,7 +325,7 @@
 				},
 				{
 					"name": "redis-server",
-					"version": "14.2.0",
+					"version": "7.4.2",
 					"path": "/usr/bin/redis-server"
 				}
 			],
@@ -347,13 +347,13 @@
 			"vulnerabilityScanPassed": true,
 			"history": [
 				{
-					"created": "2024-12-12T00:51:33Z",
+					"created": "2025-01-29T17:09:39Z",
 					"instruction": "RUN apko"
 				}
 			],
-			"scanTime": "2024-12-19T19:20:16.216866149Z",
-			"scanID": "676471f0e666b670b910fa1e"
+			"scanTime": "2025-02-08T04:07:53.453943098Z",
+			"scanID": "67a6d899884e1a8eecda89e3"
 		}
 	],
-	"consoleURL": "https://app.prismacloud.io/compute?computeState=/monitor/vulnerabilities/images/ci?search%3Dsha256%253Ae023f556edaf4f901d974ad7bc4930a7fc4fab037471a7e5baf488531c68b7de"
+	"consoleURL": "https://app.prismacloud.io/compute?computeState=/monitor/vulnerabilities/images/ci?search%3Dsha256%253A5b436b2177d1455f8e8b94ffff5cc56be44b72881011ce009ddda3bd5f6a4441"
 }
\ No newline at end of file
diff --git a/pcc_scan_results.sarif.json b/pcc_scan_results.sarif.json
index 717266f..7dbd052 100644
--- a/pcc_scan_results.sarif.json
+++ b/pcc_scan_results.sarif.json
@@ -1 +1 @@
-{"$schema":"https://raw.githubusercontent.com/oasis-tcs/sarif-spec/master/Schemata/sarif-schema-2.1.0.json","version":"2.1.0","runs":[{"tool":{"driver":{"name":"Prisma Cloud (twistcli)","version":"33.02.134","rules":[]}},"results":[]}]}
\ No newline at end of file
+{"$schema":"https://raw.githubusercontent.com/oasis-tcs/sarif-spec/master/Schemata/sarif-schema-2.1.0.json","version":"2.1.0","runs":[{"tool":{"driver":{"name":"Prisma Cloud (twistcli)","version":"33.03.138","rules":[]}},"results":[]}]}
\ No newline at end of file

@octo-sts octo-sts bot added automated pr This PR was opened by a bot cve patch labels Feb 8, 2025
@octo-sts octo-sts bot closed this Feb 12, 2025
@octo-sts octo-sts bot deleted the apply-cve-fix branch February 12, 2025 10:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
automated pr This PR was opened by a bot cve patch
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@johnfosborneiii