folkslinux
/
CBL-Mariner
mirror of https://github.com/microsoft/CBL-Mariner.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,345 Commits 848 Branches 449 Tags 877 MiB
Commit Graph

5345 Commits

Author SHA1 Message Date
Cameron E Baird 9be1704f23 nginx: Address CVE-2024-7347 (#10190) 2024-08-29 12:55:36 -04:00
Cameron E Baird 966a923a70 reaper: Add patch to address reaper CVE-2024-42459, CVE-2024-42460, CVE-2024-42461 (#10195) 2024-08-29 12:54:35 -04:00
jslobodzian 15f2e79f99 Revert "feat(cloud-init): add support for azure-proxy-agent (#9878)" (#10287) 2024-08-29 12:48:31 -04:00
jslobodzian 76df5d9188 Merge branch 'main' into 2.0 2024-08-25 11:36:14 -04:00
jslobodzian c8be46f36c
Add missing shadow-utils requirement to ceph (#10252) 2024-08-25 11:35:53 -04:00
jslobodzian b1fb7fb13e Merge branch 'main' into 2.0 2024-08-24 09:23:23 -04:00
jslobodzian f5892b4557
Bump Mariner 2.0 Release for September 2024 update (#10251) 2024-08-24 09:23:00 -04:00
jslobodzian 9ce332f22c Merge branch 'main' into 2.0 2024-08-23 21:44:58 -04:00
CBL-Mariner-Bot 52e54efc1d
[AUTO-CHERRYPICK] frr: CVE-2024-44070 (mariner 2) - branch main (#10235) 
Co-authored-by: bfjelds <bfjelds@microsoft.com>
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
 2024-08-23 14:44:24 -04:00
CBL-Mariner-Bot 959bf5a568
[AUTO-CHERRYPICK] Add patch for CVE-2023-33976 in tensorflow - branch main (#10213) 
Co-authored-by: aadhar-agarwal <108542189+aadhar-agarwal@users.noreply.github.com>
 2024-08-23 14:42:47 -04:00
CBL-Mariner-Bot 529c4fe200
[AUTO-CHERRYPICK] rpm-ostree: Add patch to resolve CVE-2023-26964 in vendored h2 sources - branch main (#10238) 
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
 2024-08-23 14:42:15 -04:00
CBL-Mariner-Bot b216136dd4
[AUTO-CHERRYPICK] moby-cli: Add patch to resolve CVE-2023-45288 - branch main (#10237) 
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
 2024-08-23 14:41:03 -04:00
CBL-Mariner-Bot b22d969705
[AUTO-CHERRYPICK] jx: Add patch to resolve CVE-2023-45288 - branch main (#10236) 
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
 2024-08-23 14:40:07 -04:00
CBL-Mariner-Bot f0722dfa7d
[AUTO-CHERRYPICK] openldap: Add patch to resolve CVE-2023-2953 - branch main (#10234) 
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
 2024-08-23 14:39:22 -04:00
CBL-Mariner-Bot 54b7e86fd1
[AUTO-CHERRYPICK] python3: CVE-2024-7592 (mariner 2) - branch main (#10223) 
Co-authored-by: bfjelds <bfjelds@microsoft.com>
 2024-08-23 14:38:46 -04:00
CBL-Mariner-Bot f056ffd982
[AUTO-CHERRYPICK] Set ptest retries to 1 for PR package build check. - branch main (#10215) 
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
 2024-08-23 14:38:17 -04:00
CBL-Mariner-Bot a3fedc41d0
[AUTO-CHERRYPICK] Bump frr to 8.5.5 to fix CVE-2024-31950 & CVE-2024-31951 - branch main (#10214) 
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
 2024-08-23 11:37:02 -07:00
aadhar-agarwal f871a79a43
Add patch for CVE-2024-43168 in unbound (#10157) 2024-08-21 10:51:00 -07:00
AZaugg bb4e1dc006
Add new package: Mosh to spec-extended (#8976) 
Signed-off-by: Chris Co <chrco@microsoft.com>
Co-authored-by: Chris Co <chrco@microsoft.com>
 2024-08-20 21:12:32 -07:00
CBL-Mariner-Bot 1171ff9846
[AUTOPATCHER-kernel] Kernel CVE - branch main - CVE-2024-36901 CVE-2024-41007 CVE-2024-41009 CVE-2024-42225 CVE-2024-42229 CVE-2024-42224 CVE-2024-42223 CVE-2024-42157 CVE-2024-42161 CVE-2024-42154 CVE-2024-42244 CVE-2024-42153 CVE-2024-42236 CVE-2024-42232 CVE-2024-42247 CVE-2024-42152 (#10178) 2024-08-19 22:13:35 -07:00
CBL-Mariner-Bot f911450e0a
[AUTO-CHERRYPICK] Patch CVE-2024-7006 in libtiff - branch main (#10154) 
Co-authored-by: aadhar-agarwal <108542189+aadhar-agarwal@users.noreply.github.com>
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
 2024-08-19 11:43:59 -07:00
CBL-Mariner-Bot f8d9c8fb33
[AUTO-CHERRYPICK] bind: upgrade version 9.16.48 -> 9.16.50 & patch CVE-2024-1737, CVE-2024-1975 & CVE-2024-4076 - branch main (#10131) 
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2024-08-19 11:43:12 -07:00
CBL-Mariner-Bot f619b67495
[AUTO-CHERRYPICK] Patch cmake for CVE-2023-28320 - branch main (#10137) 
Co-authored-by: joejoew <111843948+joejoew@users.noreply.github.com>
 2024-08-19 11:43:03 -07:00
CBL-Mariner-Bot bf54124512
[AUTO-CHERRYPICK] Patch Busybox for CVE-2021-42380, CVE-2023-42363, CVE-2023-42364 & CVE-2023-42365 - branch main (#10130) 
Co-authored-by: suresh-thelkar <suresh.thelkar@yahoo.com>
 2024-08-19 11:39:37 -07:00
CBL-Mariner-Bot a58b51846f
[AUTO-CHERRYPICK] qt5-qtbase: Add patch to resolve CVE-2024-39936. - branch main (#10129) 
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
 2024-08-19 11:39:02 -07:00
CBL-Mariner-Bot 063e609db9
[AUTO-CHERRYPICK] Fix for CVE 2024 25620 in cert-manager - branch main (#10127) 
Co-authored-by: bhagyapathak <bhagyapathak@users.noreply.github.com>
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
 2024-08-19 11:38:53 -07:00
CBL-Mariner-Bot 8380f30ee9
[AUTO-CHERRYPICK] Fix python-twisted CVEs CVE-2024-41671 and CVE-2024-41810 in 2.0 - branch main (#10122) 
Co-authored-by: sindhu-karri <33163197+sindhu-karri@users.noreply.github.com>
 2024-08-19 11:38:40 -07:00
CBL-Mariner-Bot c595d61a5e
[AUTO-CHERRYPICK] Patch rust for CVE-2024-31852 and CVE-2024-32884 - branch main (#10126) 
Co-authored-by: corvus-callidus <108946721+corvus-callidus@users.noreply.github.com>
 2024-08-19 11:38:22 -07:00
CBL-Mariner-Bot 368eaf2803
[AUTO-CHERRYPICK] dhcp: Patch bundled bind for CVE-2024-1737 & CVE-2024-1975. - branch main (#10121) 
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
 2024-08-19 11:38:12 -07:00
CBL-Mariner-Bot a8025baebf
[AUTO-CHERRYPICK] protobuf: patch CVE-2022-1941 - branch main (#10018) 
Co-authored-by: Archana Choudhary <36061892+arc9693@users.noreply.github.com>
 2024-08-19 11:37:15 -07:00
CBL-Mariner-Bot 76613af222
[AUTO-CHERRYPICK] [AUTOPATCHER-kernel] Kernel upgrade to version 5.15.164.1 - branch fasttrack/2.0 - branch main (#10170) 2024-08-19 10:17:49 -07:00
CBL-Mariner-Bot 4c9a672bf4
[AUTOPATCHER-CORE] Upgrade postgresql to 14.13 CVE-2024-7348 (#10112) 2024-08-16 08:00:49 -07:00
CBL-Mariner-Bot 93ca32cc0d
[AUTOUPGRADE-CORE] Upgrade ca-certificates Msft cert change (#10080) 2024-08-13 17:37:39 -07:00
Gary Swalling 9659612d39
Update kernel-mos to 5.15.164.1 (#10114) 2024-08-13 10:48:10 -07:00
Sumynwa 5b1646c8a3
libtiff: Add patch to resolve CVE-2023-6277 (#10048) 2024-08-13 10:55:54 +05:30
Pawel Winogrodzki 45be18fd7e
Disabled PR check debug mode by default. (CP: #9795) (#10096) 2024-08-12 10:11:02 -07:00
Bala 396b7c7113
Fix CVE-2024-6104 in influxdb by patching vendor package source (#9987) 2024-08-12 16:12:11 +05:30
Bala 0dc23ab2f5
Fix CVE-2024-6104 in keda by patching vendor gomodule (#9990) 2024-08-12 16:11:38 +05:30
Bala 60d4679885
Fix CVE-2024-6104 in cert-manager by patching vendor package sources (#9981) 2024-08-12 16:11:12 +05:30
Bala 2469e3fe7f
Fix CVE-2024-6104 in cri-o by patching vendor package source (#9986) 2024-08-12 16:10:37 +05:30
Bala 9b3f2cc063
Fix CVE-2024-6104 in rook by patching vendor gomodule (#9993) 2024-08-12 16:09:49 +05:30
Bala eb5dffcf4f
Fix CVE-2024-6104 in Prometheus by patching vendor gomodule (#9992) 2024-08-12 16:09:31 +05:30
Bala 5512944fc6
Fix CVE-2024-6104 in Packer by patching vendor gomodule (#9991) 2024-08-12 16:08:33 +05:30
amritakohli 06b9340c14
js-jquery: Patch CVE-2019-20149 in kind-of (#10086) 
Co-authored-by: Mykhailo Bykhovtsev <108374904+mbykhovtsev-ms@users.noreply.github.com>
 2024-08-09 16:12:09 -07:00
CBL-Mariner-Bot 4308a0c426
[AUTOPATCHER-kernel] Kernel CVE - branch main - CVE-2023-52340, CVE-2024-26900, CVE-2022-48788, CVE-2022-48841, CVE-2024-39473, CVE-2024-39474, CVE-2024-39483, CVE-2024-39485, CVE-2024-42071, CVE-2024-42072, CVE-2024-42073, CVE-2024-42074, CVE-2024-42075, CVE-2024-42078, CVE-2024-42083, CVE-2024-42237 (#9822) 2024-08-09 13:46:15 -07:00
Ksenija Stanojevic ded22fb0a6
feat(cloud-init): add support for azure-proxy-agent (#9878) 
Adds preliminary support for azure-proxy-agent into cloud-init. This is opt-in only with fallbacks if the command isn't available.
 2024-08-07 19:29:48 -07:00
Christopher Co 298bda4a7d
fix: correct moby-engine cherry-pick to keep consistency (#10028) 
Cherry-pick of CVE-2024-41110 from fast-track branch to main branch was malformed. Correct the inconsistency by keeping "-7" release version as the CVE fix since this is what is published via fast-track, and then update #9877 to be "-8" release, which will be built and published at next opportunity.

fixes: #9966 : "[AUTO-CHERRYPICK] fix CVE-2024-41110 in moby-engine - branch main"

Signed-off-by: Chris Co <chrco@microsoft.com>
 2024-08-06 19:58:41 -07:00
Daniel McIlvaney de885a9964
Backport: Update toolkit's gonum to v0.15.0 (#9965) 
Co-authored-by: Sam Meluch <109628994+sameluch@users.noreply.github.com>
 2024-08-06 13:11:26 -07:00
Archana Choudhary 1dcd90c10e
azcopy: upgrade version to 10.25.1 to fix CVE-2024-35255 (#9581) 2024-08-06 16:29:43 +05:30
CBL-Mariner-Bot dc4b0b34f9
[AUTO-CHERRYPICK] libcontainers-common: patch CVE-2021-43565 - branch main (#9975) 
Co-authored-by: Archana Choudhary <36061892+arc9693@users.noreply.github.com>
 2024-08-01 14:12:47 +05:30