Skip to content

Commit

Permalink
Update 2024-12-26
Browse files Browse the repository at this point in the history
  • Loading branch information
@rancher-security-bot
rancher-security-bot committed Dec 26, 2024
1 parent 6ac86b6 commit 58824ad
Show file tree
Hide file tree
Showing 19 changed files with 857 additions and 243 deletions.
3 changes: 2 additions & 1 deletion docs/csv/report-harvester-master-cves.csv
View file
Original file line number Diff line number Diff line change
Expand Up @@ -78,7 +78,8 @@ rancher/hardened-multus-cni:v4.1.3-build20241028,harvester/master,stdlib,v1.21.1
rancher/hardened-multus-cni:v4.1.3-build20241028,harvester/master,stdlib,v1.21.11,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,kubeconfig_generator,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
rancher/hardened-multus-cni:v4.1.3-build20241028,harvester/master,stdlib,v1.21.11,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,thin_entrypoint,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
rancher/hardened-multus-cni:v4.1.3-build20241028,harvester/master,stdlib,v1.21.11,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,usr/src/multus-cni/bin/multus,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-eventrouter:v0.3.2,harvester/master,stdlib,v1.22.6,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,usr/bin/eventrouter,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-eventrouter:v0.3.3,harvester/master,golang.org/x/crypto,v0.21.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/eventrouter,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-eventrouter:v0.3.3,harvester/master,golang.org/x/net,v0.23.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/eventrouter,0.33.0,false,affected,
rancher/harvester-load-balancer-webhook:master-head,harvester/master,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2019-12274,HIGH,https://avd.aquasec.com/nvd/cve-2019-12274,usr/bin/harvester-load-balancer-webhook,"2.2.4, 1.6.27",false,affected,
rancher/harvester-load-balancer-webhook:master-head,harvester/master,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2021-36775,HIGH,https://avd.aquasec.com/nvd/cve-2021-36775,usr/bin/harvester-load-balancer-webhook,"2.4.18, 2.5.12, 2.6.3",false,affected,
rancher/harvester-load-balancer-webhook:master-head,harvester/master,github.com/rancher/steve,v0.0.0-20221209194631-acf9d31ce0dd,gobinary,CVE-2024-52280,HIGH,https://avd.aquasec.com/nvd/cve-2024-52280,usr/bin/harvester-load-balancer-webhook,0.0.0-20241029132712-2175e090fe4b,false,affected,
Expand Down
2 changes: 1 addition & 1 deletion docs/csv/report-harvester-master-stats.csv
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ rancher/hardened-k8s-metrics-server:v0.7.1-build20241008,0,0,0
rancher/hardened-kubernetes:v1.30.7-rke2r1-build20241126,0,0,0
rancher/hardened-multus-cni:v4.1.3-build20241028,0,0,0
rancher/harvester-cluster-repo:master,0,0,0
rancher/harvester-eventrouter:v0.3.2,0,0,0
rancher/harvester-eventrouter:v0.3.3,0,2,2
rancher/harvester-load-balancer-webhook:master-head,0,3,3
rancher/harvester-load-balancer:master-head,0,3,3
rancher/harvester-network-controller:master-head,0,4,4
Expand Down
32 changes: 6 additions & 26 deletions docs/csv/report-harvester-v1.4-head-cves.csv
View file
Original file line number Diff line number Diff line change
Expand Up @@ -79,22 +79,12 @@ rancher/hardened-multus-cni:v4.1.3-build20241028,harvester/v1.4-head,stdlib,v1.2
rancher/hardened-multus-cni:v4.1.3-build20241028,harvester/v1.4-head,stdlib,v1.21.11,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,thin_entrypoint,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
rancher/hardened-multus-cni:v4.1.3-build20241028,harvester/v1.4-head,stdlib,v1.21.11,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,usr/src/multus-cni/bin/multus,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-eventrouter:v0.3.2,harvester/v1.4-head,stdlib,v1.22.6,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,usr/bin/eventrouter,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-load-balancer-webhook:v0.4.3,harvester/v1.4-head,github.com/rancher/apiserver,v0.0.0-20230120214941-e88c32739dc7,gobinary,CVE-2023-32192,HIGH,https://avd.aquasec.com/nvd/cve-2023-32192,usr/bin/harvester-load-balancer-webhook,0.0.0-20240207153957-4fd7d821d952,false,affected,
rancher/harvester-load-balancer-webhook:v0.4.3,harvester/v1.4-head,github.com/rancher/norman,v0.0.0-20221205184727-32ef2e185b99,gobinary,CVE-2023-32193,HIGH,https://avd.aquasec.com/nvd/cve-2023-32193,usr/bin/harvester-load-balancer-webhook,0.0.0-20240207153100-3bb70b772b52,false,affected,
rancher/harvester-load-balancer-webhook:v0.4.3,harvester/v1.4-head,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2019-12274,HIGH,https://avd.aquasec.com/nvd/cve-2019-12274,usr/bin/harvester-load-balancer-webhook,"2.2.4, 1.6.27",false,affected,
rancher/harvester-load-balancer-webhook:v0.4.3,harvester/v1.4-head,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2021-36775,HIGH,https://avd.aquasec.com/nvd/cve-2021-36775,usr/bin/harvester-load-balancer-webhook,"2.4.18, 2.5.12, 2.6.3",false,affected,
rancher/harvester-load-balancer-webhook:v0.4.3,harvester/v1.4-head,github.com/rancher/steve,v0.0.0-20221209194631-acf9d31ce0dd,gobinary,CVE-2024-52280,HIGH,https://avd.aquasec.com/nvd/cve-2024-52280,usr/bin/harvester-load-balancer-webhook,0.0.0-20241029132712-2175e090fe4b,false,affected,
rancher/harvester-load-balancer-webhook:v0.4.3,harvester/v1.4-head,go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp,v0.35.1,gobinary,CVE-2023-45142,HIGH,https://avd.aquasec.com/nvd/cve-2023-45142,usr/bin/harvester-load-balancer-webhook,0.44.0,false,affected,
rancher/harvester-load-balancer-webhook:v0.4.3,harvester/v1.4-head,golang.org/x/crypto,v0.18.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/harvester-load-balancer-webhook,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-load-balancer-webhook:v0.4.3,harvester/v1.4-head,golang.org/x/net,v0.20.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/harvester-load-balancer-webhook,0.33.0,false,affected,
rancher/harvester-load-balancer:v0.4.3,harvester/v1.4-head,github.com/rancher/apiserver,v0.0.0-20230120214941-e88c32739dc7,gobinary,CVE-2023-32192,HIGH,https://avd.aquasec.com/nvd/cve-2023-32192,usr/bin/harvester-load-balancer,0.0.0-20240207153957-4fd7d821d952,false,affected,
rancher/harvester-load-balancer:v0.4.3,harvester/v1.4-head,github.com/rancher/norman,v0.0.0-20221205184727-32ef2e185b99,gobinary,CVE-2023-32193,HIGH,https://avd.aquasec.com/nvd/cve-2023-32193,usr/bin/harvester-load-balancer,0.0.0-20240207153100-3bb70b772b52,false,affected,
rancher/harvester-load-balancer:v0.4.3,harvester/v1.4-head,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2019-12274,HIGH,https://avd.aquasec.com/nvd/cve-2019-12274,usr/bin/harvester-load-balancer,"2.2.4, 1.6.27",false,affected,
rancher/harvester-load-balancer:v0.4.3,harvester/v1.4-head,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2021-36775,HIGH,https://avd.aquasec.com/nvd/cve-2021-36775,usr/bin/harvester-load-balancer,"2.4.18, 2.5.12, 2.6.3",false,affected,
rancher/harvester-load-balancer:v0.4.3,harvester/v1.4-head,github.com/rancher/steve,v0.0.0-20221209194631-acf9d31ce0dd,gobinary,CVE-2024-52280,HIGH,https://avd.aquasec.com/nvd/cve-2024-52280,usr/bin/harvester-load-balancer,0.0.0-20241029132712-2175e090fe4b,false,affected,
rancher/harvester-load-balancer:v0.4.3,harvester/v1.4-head,go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp,v0.35.1,gobinary,CVE-2023-45142,HIGH,https://avd.aquasec.com/nvd/cve-2023-45142,usr/bin/harvester-load-balancer,0.44.0,false,affected,
rancher/harvester-load-balancer:v0.4.3,harvester/v1.4-head,golang.org/x/crypto,v0.18.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/harvester-load-balancer,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-load-balancer:v0.4.3,harvester/v1.4-head,golang.org/x/net,v0.20.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/harvester-load-balancer,0.33.0,false,affected,
rancher/harvester-load-balancer-webhook:v0.4.4,harvester/v1.4-head,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2019-12274,HIGH,https://avd.aquasec.com/nvd/cve-2019-12274,usr/bin/harvester-load-balancer-webhook,"2.2.4, 1.6.27",false,affected,
rancher/harvester-load-balancer-webhook:v0.4.4,harvester/v1.4-head,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2021-36775,HIGH,https://avd.aquasec.com/nvd/cve-2021-36775,usr/bin/harvester-load-balancer-webhook,"2.4.18, 2.5.12, 2.6.3",false,affected,
rancher/harvester-load-balancer-webhook:v0.4.4,harvester/v1.4-head,github.com/rancher/steve,v0.0.0-20221209194631-acf9d31ce0dd,gobinary,CVE-2024-52280,HIGH,https://avd.aquasec.com/nvd/cve-2024-52280,usr/bin/harvester-load-balancer-webhook,0.0.0-20241029132712-2175e090fe4b,false,affected,
rancher/harvester-load-balancer:v0.4.4,harvester/v1.4-head,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2019-12274,HIGH,https://avd.aquasec.com/nvd/cve-2019-12274,usr/bin/harvester-load-balancer,"2.2.4, 1.6.27",false,affected,
rancher/harvester-load-balancer:v0.4.4,harvester/v1.4-head,github.com/rancher/rancher,v0.0.0-20230124173128-2207cfed1803,gobinary,CVE-2021-36775,HIGH,https://avd.aquasec.com/nvd/cve-2021-36775,usr/bin/harvester-load-balancer,"2.4.18, 2.5.12, 2.6.3",false,affected,
rancher/harvester-load-balancer:v0.4.4,harvester/v1.4-head,github.com/rancher/steve,v0.0.0-20221209194631-acf9d31ce0dd,gobinary,CVE-2024-52280,HIGH,https://avd.aquasec.com/nvd/cve-2024-52280,usr/bin/harvester-load-balancer,0.0.0-20241029132712-2175e090fe4b,false,affected,
rancher/harvester-network-controller:v0.5.5,harvester/v1.4-head,libglib-2_0-0,2.78.6-150600.4.3.1,suse linux enterprise server,SUSE-SU-2024:4254-1,HIGH,,rancher/harvester-network-controller:v0.5.5 (suse linux enterprise server 15.6),2.78.6-150600.4.8.1,false,affected,
rancher/harvester-network-controller:v0.5.5,harvester/v1.4-head,github.com/rancher/apiserver,v0.0.0-20230120214941-e88c32739dc7,gobinary,CVE-2023-32192,HIGH,https://avd.aquasec.com/nvd/cve-2023-32192,usr/bin/harvester-network-controller,0.0.0-20240207153957-4fd7d821d952,false,affected,
rancher/harvester-network-controller:v0.5.5,harvester/v1.4-head,github.com/rancher/norman,v0.0.0-20221205184727-32ef2e185b99,gobinary,CVE-2023-32193,HIGH,https://avd.aquasec.com/nvd/cve-2023-32193,usr/bin/harvester-network-controller,0.0.0-20240207153100-3bb70b772b52,false,affected,
Expand Down Expand Up @@ -126,16 +116,6 @@ rancher/harvester-network-webhook:v0.5.5,harvester/v1.4-head,golang.org/x/crypto
rancher/harvester-network-webhook:v0.5.5,harvester/v1.4-head,golang.org/x/net,v0.23.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/harvester-network-webhook,0.33.0,false,affected,
rancher/harvester-network-webhook:v0.5.5,harvester/v1.4-head,kubevirt.io/kubevirt,v0.54.0,gobinary,CVE-2023-26484,HIGH,https://avd.aquasec.com/nvd/cve-2023-26484,usr/bin/harvester-network-webhook,,false,affected,
rancher/harvester-network-webhook:v0.5.5,harvester/v1.4-head,kubevirt.io/kubevirt,v0.54.0,gobinary,GHSA-qv98-3369-g364,HIGH,https://github.com/advisories/GHSA-qv98-3369-g364,usr/bin/harvester-network-webhook,0.55.1,false,affected,
rancher/harvester-networkfs-manager:v0.1.1,harvester/v1.4-head,libglib-2_0-0,2.78.6-150600.4.3.1,suse linux enterprise server,SUSE-SU-2024:4254-1,HIGH,,rancher/harvester-networkfs-manager:v0.1.1 (suse linux enterprise server 15.6),2.78.6-150600.4.8.1,false,affected,
rancher/harvester-networkfs-manager:v0.1.1,harvester/v1.4-head,libopenssl-3-fips-provider,3.1.4-150600.5.15.1,suse linux enterprise server,SUSE-SU-2024:3501-1,HIGH,,rancher/harvester-networkfs-manager:v0.1.1 (suse linux enterprise server 15.6),3.1.4-150600.5.18.1,false,affected,
rancher/harvester-networkfs-manager:v0.1.1,harvester/v1.4-head,libopenssl3,3.1.4-150600.5.15.1,suse linux enterprise server,SUSE-SU-2024:3501-1,HIGH,,rancher/harvester-networkfs-manager:v0.1.1 (suse linux enterprise server 15.6),3.1.4-150600.5.18.1,false,affected,
rancher/harvester-networkfs-manager:v0.1.1,harvester/v1.4-head,openssl-3,3.1.4-150600.5.15.1,suse linux enterprise server,SUSE-SU-2024:3501-1,HIGH,,rancher/harvester-networkfs-manager:v0.1.1 (suse linux enterprise server 15.6),3.1.4-150600.5.18.1,false,affected,
rancher/harvester-node-disk-manager-webhook:v0.7.7,harvester/v1.4-head,libglib-2_0-0,2.78.6-150600.4.3.1,suse linux enterprise server,SUSE-SU-2024:4254-1,HIGH,,rancher/harvester-node-disk-manager-webhook:v0.7.7 (suse linux enterprise server 15.6),2.78.6-150600.4.8.1,false,affected,
rancher/harvester-node-disk-manager-webhook:v0.7.7,harvester/v1.4-head,golang.org/x/crypto,v0.27.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/node-disk-manager-webhook,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-node-disk-manager-webhook:v0.7.7,harvester/v1.4-head,golang.org/x/net,v0.29.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/node-disk-manager-webhook,0.33.0,false,affected,
rancher/harvester-node-disk-manager:v0.7.7,harvester/v1.4-head,libglib-2_0-0,2.78.6-150600.4.3.1,suse linux enterprise server,SUSE-SU-2024:4254-1,HIGH,,rancher/harvester-node-disk-manager:v0.7.7 (suse linux enterprise server 15.6),2.78.6-150600.4.8.1,false,affected,
rancher/harvester-node-disk-manager:v0.7.7,harvester/v1.4-head,golang.org/x/crypto,v0.27.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/node-disk-manager,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
rancher/harvester-node-disk-manager:v0.7.7,harvester/v1.4-head,golang.org/x/net,v0.29.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,usr/bin/node-disk-manager,0.33.0,false,affected,
rancher/harvester-node-manager-webhook:v0.3.3,harvester/v1.4-head,libglib-2_0-0,2.78.6-150600.4.3.1,suse linux enterprise server,SUSE-SU-2024:4254-1,HIGH,,rancher/harvester-node-manager-webhook:v0.3.3 (suse linux enterprise server 15.6),2.78.6-150600.4.8.1,false,affected,
rancher/harvester-node-manager-webhook:v0.3.3,harvester/v1.4-head,libopenssl-3-fips-provider,3.1.4-150600.5.15.1,suse linux enterprise server,SUSE-SU-2024:3501-1,HIGH,,rancher/harvester-node-manager-webhook:v0.3.3 (suse linux enterprise server 15.6),3.1.4-150600.5.18.1,false,affected,
rancher/harvester-node-manager-webhook:v0.3.3,harvester/v1.4-head,libopenssl3,3.1.4-150600.5.15.1,suse linux enterprise server,SUSE-SU-2024:3501-1,HIGH,,rancher/harvester-node-manager-webhook:v0.3.3 (suse linux enterprise server 15.6),3.1.4-150600.5.18.1,false,affected,
Expand Down
10 changes: 5 additions & 5 deletions docs/csv/report-harvester-v1.4-head-stats.csv
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,14 +31,14 @@ rancher/hardened-kubernetes:v1.30.7-rke2r1-build20241126,0,0,0
rancher/hardened-multus-cni:v4.1.3-build20241028,0,0,0
rancher/harvester-cluster-repo:v1.4,0,0,0
rancher/harvester-eventrouter:v0.3.2,0,0,0
rancher/harvester-load-balancer-webhook:v0.4.3,0,8,8
rancher/harvester-load-balancer:v0.4.3,0,8,8
rancher/harvester-load-balancer-webhook:v0.4.4,0,3,3
rancher/harvester-load-balancer:v0.4.4,0,3,3
rancher/harvester-network-controller:v0.5.5,0,11,11
rancher/harvester-network-helper:v0.5.5,0,10,10
rancher/harvester-network-webhook:v0.5.5,0,10,10
rancher/harvester-networkfs-manager:v0.1.1,0,4,4
rancher/harvester-node-disk-manager-webhook:v0.7.7,0,3,3
rancher/harvester-node-disk-manager:v0.7.7,0,3,3
rancher/harvester-networkfs-manager:v0.1.2,0,0,0
rancher/harvester-node-disk-manager-webhook:v0.7.8,0,0,0
rancher/harvester-node-disk-manager:v0.7.8,0,0,0
rancher/harvester-node-manager-webhook:v0.3.3,0,4,4
rancher/harvester-node-manager:v0.3.3,0,4,4
rancher/harvester-pcidevices:v0.4.1,0,1,1
Expand Down
5 changes: 5 additions & 0 deletions docs/csv/report-k3s-v1.28-cves.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
image,release,package_name,package_version,type,vulnerability_id,severity,url,target,patched_version,mirrored,status,justification
rancher/mirrored-coredns-coredns:1.11.3,k3s/v1.28,stdlib,v1.21.11,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,coredns,"1.22.7, 1.23.1",true,affected,severity_changed_due_to_suse_cvss_score
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.28,golang.org/x/crypto,v0.26.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,metrics-server,0.31.0,true,affected,severity_changed_due_to_suse_cvss_score
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.28,golang.org/x/net,v0.28.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,metrics-server,0.33.0,true,affected,
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.28,stdlib,v1.22.5,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,metrics-server,"1.22.7, 1.23.1",true,affected,severity_changed_due_to_suse_cvss_score
9 changes: 9 additions & 0 deletions docs/csv/report-k3s-v1.28-stats.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
image,critical,high,total
rancher/klipper-helm:v0.9.3-build20241008,0,0,0
rancher/klipper-lb:v0.4.9,0,0,0
rancher/local-path-provisioner:v0.0.30,0,0,0
rancher/mirrored-coredns-coredns:1.11.3,0,0,0
rancher/mirrored-library-busybox:1.36.1,0,0,0
rancher/mirrored-library-traefik:2.11.10,0,0,0
rancher/mirrored-metrics-server:v0.7.2,0,2,2
rancher/mirrored-pause:3.6,0,0,0
4 changes: 4 additions & 0 deletions docs/csv/report-k3s-v1.29-cves.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
image,release,package_name,package_version,type,vulnerability_id,severity,url,target,patched_version,mirrored,status,justification
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.29,golang.org/x/crypto,v0.26.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,metrics-server,0.31.0,true,affected,severity_changed_due_to_suse_cvss_score
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.29,golang.org/x/net,v0.28.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,metrics-server,0.33.0,true,affected,
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.29,stdlib,v1.22.5,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,metrics-server,"1.22.7, 1.23.1",true,affected,severity_changed_due_to_suse_cvss_score
9 changes: 9 additions & 0 deletions docs/csv/report-k3s-v1.29-stats.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
image,critical,high,total
rancher/klipper-helm:v0.9.3-build20241008,0,0,0
rancher/klipper-lb:v0.4.9,0,0,0
rancher/local-path-provisioner:v0.0.30,0,0,0
rancher/mirrored-coredns-coredns:1.12.0,0,0,0
rancher/mirrored-library-busybox:1.36.1,0,0,0
rancher/mirrored-library-traefik:2.11.10,0,0,0
rancher/mirrored-metrics-server:v0.7.2,0,2,2
rancher/mirrored-pause:3.6,0,0,0
4 changes: 4 additions & 0 deletions docs/csv/report-k3s-v1.30-cves.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
image,release,package_name,package_version,type,vulnerability_id,severity,url,target,patched_version,mirrored,status,justification
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.30,golang.org/x/crypto,v0.26.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,metrics-server,0.31.0,true,affected,severity_changed_due_to_suse_cvss_score
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.30,golang.org/x/net,v0.28.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,metrics-server,0.33.0,true,affected,
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.30,stdlib,v1.22.5,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,metrics-server,"1.22.7, 1.23.1",true,affected,severity_changed_due_to_suse_cvss_score
9 changes: 9 additions & 0 deletions docs/csv/report-k3s-v1.30-stats.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
image,critical,high,total
rancher/klipper-helm:v0.9.3-build20241008,0,0,0
rancher/klipper-lb:v0.4.9,0,0,0
rancher/local-path-provisioner:v0.0.30,0,0,0
rancher/mirrored-coredns-coredns:1.12.0,0,0,0
rancher/mirrored-library-busybox:1.36.1,0,0,0
rancher/mirrored-library-traefik:2.11.10,0,0,0
rancher/mirrored-metrics-server:v0.7.2,0,2,2
rancher/mirrored-pause:3.6,0,0,0
4 changes: 4 additions & 0 deletions docs/csv/report-k3s-v1.31-cves.csv
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
image,release,package_name,package_version,type,vulnerability_id,severity,url,target,patched_version,mirrored,status,justification
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.31,golang.org/x/crypto,v0.26.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,metrics-server,0.31.0,true,affected,severity_changed_due_to_suse_cvss_score
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.31,golang.org/x/net,v0.28.0,gobinary,CVE-2024-45338,HIGH,https://avd.aquasec.com/nvd/cve-2024-45338,metrics-server,0.33.0,true,affected,
rancher/mirrored-metrics-server:v0.7.2,k3s/v1.31,stdlib,v1.22.5,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,metrics-server,"1.22.7, 1.23.1",true,affected,severity_changed_due_to_suse_cvss_score
Loading

0 comments on commit 58824ad

Please sign in to comment.