Skip to content

Commit

Permalink
Update 2025-02-28
Browse files Browse the repository at this point in the history
  • Loading branch information
@rancher-security-bot
rancher-security-bot committed Feb 28, 2025
1 parent 70ec744 commit 0fac816
Show file tree
Hide file tree
Showing 42 changed files with 833 additions and 7,879 deletions.
6 changes: 0 additions & 6 deletions docs/csv/report-harvester-master-cves.csv
View file
Original file line number Diff line number Diff line change
Expand Up @@ -158,14 +158,8 @@ rancher/harvester-node-disk-manager-webhook:master-head,harvester/master,libxml2
rancher/harvester-node-disk-manager:master-head,harvester/master,libtasn1,4.13-150000.4.8.1,sles,SUSE-SU-2025:0548-1,HIGH,,rancher/harvester-node-disk-manager:master-head (sles 15.6),4.13-150000.4.11.1,false,affected,
rancher/harvester-node-disk-manager:master-head,harvester/master,libtasn1-6,4.13-150000.4.8.1,sles,SUSE-SU-2025:0548-1,HIGH,,rancher/harvester-node-disk-manager:master-head (sles 15.6),4.13-150000.4.11.1,false,affected,
rancher/harvester-node-disk-manager:master-head,harvester/master,libxml2-2,2.10.3-150500.5.17.1,sles,SUSE-SU-2025:0348-1,HIGH,,rancher/harvester-node-disk-manager:master-head (sles 15.6),2.10.3-150500.5.20.1,false,affected,
rancher/harvester-node-manager-webhook:master-head,harvester/master,libtasn1,4.13-150000.4.8.1,sles,SUSE-SU-2025:0548-1,HIGH,,rancher/harvester-node-manager-webhook:master-head (sles 15.6),4.13-150000.4.11.1,false,affected,
rancher/harvester-node-manager-webhook:master-head,harvester/master,libtasn1-6,4.13-150000.4.8.1,sles,SUSE-SU-2025:0548-1,HIGH,,rancher/harvester-node-manager-webhook:master-head (sles 15.6),4.13-150000.4.11.1,false,affected,
rancher/harvester-node-manager-webhook:master-head,harvester/master,libxml2-2,2.10.3-150500.5.17.1,sles,SUSE-SU-2025:0348-1,HIGH,,rancher/harvester-node-manager-webhook:master-head (sles 15.6),2.10.3-150500.5.20.1,false,affected,
rancher/harvester-node-manager-webhook:master-head,harvester/master,golang.org/x/crypto,v0.22.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/harvester-node-manager-webhook,0.31.0,false,not_affected,vulnerable_code_not_present
rancher/harvester-node-manager-webhook:master-head,harvester/master,golang.org/x/net,v0.24.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/harvester-node-manager-webhook,0.33.0,false,not_affected,vulnerable_code_not_present
rancher/harvester-node-manager:master-head,harvester/master,libtasn1,4.13-150000.4.8.1,sles,SUSE-SU-2025:0548-1,HIGH,,rancher/harvester-node-manager:master-head (sles 15.6),4.13-150000.4.11.1,false,affected,
rancher/harvester-node-manager:master-head,harvester/master,libtasn1-6,4.13-150000.4.8.1,sles,SUSE-SU-2025:0548-1,HIGH,,rancher/harvester-node-manager:master-head (sles 15.6),4.13-150000.4.11.1,false,affected,
rancher/harvester-node-manager:master-head,harvester/master,libxml2-2,2.10.3-150500.5.17.1,sles,SUSE-SU-2025:0348-1,HIGH,,rancher/harvester-node-manager:master-head (sles 15.6),2.10.3-150500.5.20.1,false,affected,
rancher/harvester-node-manager:master-head,harvester/master,golang.org/x/net,v0.24.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/harvester-node-manager,0.33.0,false,not_affected,vulnerable_code_not_present
rancher/harvester-pcidevices:v1.5.0-dev.0,harvester/master,libtasn1,4.13-150000.4.8.1,sles,SUSE-SU-2025:0548-1,HIGH,,rancher/harvester-pcidevices:v1.5.0-dev.0 (sles 15.6),4.13-150000.4.11.1,false,affected,
rancher/harvester-pcidevices:v1.5.0-dev.0,harvester/master,libtasn1-6,4.13-150000.4.8.1,sles,SUSE-SU-2025:0548-1,HIGH,,rancher/harvester-pcidevices:v1.5.0-dev.0 (sles 15.6),4.13-150000.4.11.1,false,affected,
Expand Down
4 changes: 2 additions & 2 deletions docs/csv/report-harvester-master-stats.csv
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,8 +39,8 @@ rancher/harvester-network-webhook:master-head,0,4,4
rancher/harvester-networkfs-manager:main-head,0,3,3
rancher/harvester-node-disk-manager-webhook:master-head,0,3,3
rancher/harvester-node-disk-manager:master-head,0,3,3
rancher/harvester-node-manager-webhook:master-head,0,3,3
rancher/harvester-node-manager:master-head,0,3,3
rancher/harvester-node-manager-webhook:master-head,0,0,0
rancher/harvester-node-manager:master-head,0,0,0
rancher/harvester-pcidevices:v1.5.0-dev.0,0,2,2
rancher/harvester-seeder:v1.5.0-dev.0,0,3,3
rancher/harvester-upgrade:master-head,0,0,0
Expand Down
27 changes: 0 additions & 27 deletions docs/csv/report-k3s-v1.29.13-cves.csv
View file

This file was deleted.

10 changes: 0 additions & 10 deletions docs/csv/report-k3s-v1.29.13-stats.csv
View file

This file was deleted.

22 changes: 22 additions & 0 deletions docs/csv/report-k3s-v1.29.14-cves.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,22 @@
image,release,package_name,package_version,type,vulnerability_id,severity,url,target,patched_version,mirrored,status,justification
rancher/k3s:v1.29.14-k3s1,k3s/v1.29.14,golang.org/x/net,v0.23.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,bin/containerd-shim-runc-v2,0.33.0,false,not_affected,vulnerable_code_not_present
rancher/k3s:v1.29.14-k3s1,k3s/v1.29.14,go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc,v0.45.0,gobinary,CVE-2023-47108,HIGH,https://avd.aquasec.com/nvd/cve-2023-47108,bin/k3s,0.46.0,false,affected,
rancher/k3s:v1.29.14-k3s1,k3s/v1.29.14,golang.org/x/crypto,v0.17.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,bin/k3s,0.31.0,false,not_affected,vulnerable_code_not_present
rancher/k3s:v1.29.14-k3s1,k3s/v1.29.14,golang.org/x/net,v0.17.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,bin/k3s,0.33.0,false,not_affected,vulnerable_code_not_in_execute_path
rancher/k3s:v1.29.14-k3s1,k3s/v1.29.14,golang.org/x/net,v0.24.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,bin/runc,0.33.0,false,not_affected,vulnerable_code_not_present
rancher/klipper-helm:v0.9.4-build20250113,k3s/v1.29.14,libcrypto3,3.3.2-r4,alpine,CVE-2024-12797,HIGH,https://avd.aquasec.com/nvd/cve-2024-12797,rancher/klipper-helm:v0.9.4-build20250113 (alpine 3.21.2),3.3.3-r0,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
rancher/klipper-helm:v0.9.4-build20250113,k3s/v1.29.14,libssl3,3.3.2-r4,alpine,CVE-2024-12797,HIGH,https://avd.aquasec.com/nvd/cve-2024-12797,rancher/klipper-helm:v0.9.4-build20250113 (alpine 3.21.2),3.3.3-r0,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
rancher/klipper-helm:v0.9.4-build20250113,k3s/v1.29.14,golang.org/x/crypto,v0.26.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis,0.31.0,false,not_affected,vulnerable_code_not_present
rancher/klipper-helm:v0.9.4-build20250113,k3s/v1.29.14,golang.org/x/net,v0.28.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis,0.33.0,false,not_affected,vulnerable_code_not_in_execute_path
rancher/klipper-helm:v0.9.4-build20250113,k3s/v1.29.14,golang.org/x/crypto,v0.25.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status,0.31.0,false,not_affected,vulnerable_code_not_present
rancher/klipper-helm:v0.9.4-build20250113,k3s/v1.29.14,golang.org/x/net,v0.23.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status,0.33.0,false,not_affected,vulnerable_code_not_in_execute_path
rancher/klipper-helm:v0.9.4-build20250113,k3s/v1.29.14,golang.org/x/net,v0.26.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/helm,0.33.0,false,not_affected,vulnerable_code_not_in_execute_path
rancher/klipper-lb:v0.4.10,k3s/v1.29.14,libcrypto3,3.3.2-r4,alpine,CVE-2024-12797,HIGH,https://avd.aquasec.com/nvd/cve-2024-12797,rancher/klipper-lb:v0.4.10 (alpine 3.21.2),3.3.3-r0,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
rancher/klipper-lb:v0.4.10,k3s/v1.29.14,libssl3,3.3.2-r4,alpine,CVE-2024-12797,HIGH,https://avd.aquasec.com/nvd/cve-2024-12797,rancher/klipper-lb:v0.4.10 (alpine 3.21.2),3.3.3-r0,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
rancher/local-path-provisioner:v0.0.31,k3s/v1.29.14,libcrypto3,3.3.2-r4,alpine,CVE-2024-12797,HIGH,https://avd.aquasec.com/nvd/cve-2024-12797,rancher/local-path-provisioner:v0.0.31 (alpine 3.21.2),3.3.3-r0,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
rancher/local-path-provisioner:v0.0.31,k3s/v1.29.14,libssl3,3.3.2-r4,alpine,CVE-2024-12797,HIGH,https://avd.aquasec.com/nvd/cve-2024-12797,rancher/local-path-provisioner:v0.0.31 (alpine 3.21.2),3.3.3-r0,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
rancher/mirrored-coredns-coredns:1.12.0,k3s/v1.29.14,golang.org/x/crypto,v0.29.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,coredns,0.31.0,true,not_affected,vulnerable_code_not_present
rancher/mirrored-coredns-coredns:1.12.0,k3s/v1.29.14,golang.org/x/net,v0.31.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,coredns,0.33.0,true,not_affected,vulnerable_code_not_present
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.29.14,stdlib,v1.22.5,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,metrics-server,"1.22.7, 1.23.1",true,affected,severity_changed_due_to_suse_cvss_score
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.29.14,golang.org/x/crypto,v0.26.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,metrics-server,0.31.0,true,not_affected,vulnerable_code_not_present
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.29.14,golang.org/x/net,v0.28.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,metrics-server,0.33.0,true,not_affected,vulnerable_code_not_present
10 changes: 10 additions & 0 deletions docs/csv/report-k3s-v1.29.14-stats.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
image,critical,high,total
rancher/k3s:v1.29.14-k3s1,0,1,1
rancher/klipper-helm:v0.9.4-build20250113,0,0,0
rancher/klipper-lb:v0.4.10,0,0,0
rancher/local-path-provisioner:v0.0.31,0,0,0
rancher/mirrored-coredns-coredns:1.12.0,0,0,0
rancher/mirrored-library-busybox:1.36.1,0,0,0
rancher/mirrored-library-traefik:2.11.20,0,0,0
rancher/mirrored-metrics-server:v0.7.2,0,0,0
rancher/mirrored-pause:3.6,0,0,0
Loading

0 comments on commit 0fac816

Please sign in to comment.