Cameron E Baird
9be1704f23
nginx: Address CVE-2024-7347 ( #10190 )
2024-08-29 12:55:36 -04:00
Cameron E Baird
966a923a70
reaper: Add patch to address reaper CVE-2024-42459, CVE-2024-42460, CVE-2024-42461 ( #10195 )
2024-08-29 12:54:35 -04:00
jslobodzian
15f2e79f99
Revert "feat(cloud-init): add support for azure-proxy-agent ( #9878 )" ( #10287 )
2024-08-29 12:48:31 -04:00
jslobodzian
76df5d9188
Merge branch 'main' into 2.0
2024-08-25 11:36:14 -04:00
jslobodzian
c8be46f36c
Add missing shadow-utils requirement to ceph ( #10252 )
2024-08-25 11:35:53 -04:00
jslobodzian
b1fb7fb13e
Merge branch 'main' into 2.0
2024-08-24 09:23:23 -04:00
jslobodzian
f5892b4557
Bump Mariner 2.0 Release for September 2024 update ( #10251 )
2024-08-24 09:23:00 -04:00
jslobodzian
9ce332f22c
Merge branch 'main' into 2.0
2024-08-23 21:44:58 -04:00
CBL-Mariner-Bot
52e54efc1d
[AUTO-CHERRYPICK] frr: CVE-2024-44070 (mariner 2) - branch main ( #10235 )
...
Co-authored-by: bfjelds <bfjelds@microsoft.com>
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-23 14:44:24 -04:00
CBL-Mariner-Bot
959bf5a568
[AUTO-CHERRYPICK] Add patch for CVE-2023-33976 in tensorflow - branch main ( #10213 )
...
Co-authored-by: aadhar-agarwal <108542189+aadhar-agarwal@users.noreply.github.com>
2024-08-23 14:42:47 -04:00
CBL-Mariner-Bot
529c4fe200
[AUTO-CHERRYPICK] rpm-ostree: Add patch to resolve CVE-2023-26964 in vendored h2 sources - branch main ( #10238 )
...
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
2024-08-23 14:42:15 -04:00
CBL-Mariner-Bot
b216136dd4
[AUTO-CHERRYPICK] moby-cli: Add patch to resolve CVE-2023-45288 - branch main ( #10237 )
...
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
2024-08-23 14:41:03 -04:00
CBL-Mariner-Bot
b22d969705
[AUTO-CHERRYPICK] jx: Add patch to resolve CVE-2023-45288 - branch main ( #10236 )
...
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
2024-08-23 14:40:07 -04:00
CBL-Mariner-Bot
f0722dfa7d
[AUTO-CHERRYPICK] openldap: Add patch to resolve CVE-2023-2953 - branch main ( #10234 )
...
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
2024-08-23 14:39:22 -04:00
CBL-Mariner-Bot
54b7e86fd1
[AUTO-CHERRYPICK] python3: CVE-2024-7592 (mariner 2) - branch main ( #10223 )
...
Co-authored-by: bfjelds <bfjelds@microsoft.com>
2024-08-23 14:38:46 -04:00
CBL-Mariner-Bot
f056ffd982
[AUTO-CHERRYPICK] Set ptest retries to 1 for PR package build check. - branch main ( #10215 )
...
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-23 14:38:17 -04:00
CBL-Mariner-Bot
a3fedc41d0
[AUTO-CHERRYPICK] Bump frr to 8.5.5 to fix CVE-2024-31950 & CVE-2024-31951 - branch main ( #10214 )
...
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
2024-08-23 11:37:02 -07:00
aadhar-agarwal
f871a79a43
Add patch for CVE-2024-43168 in unbound ( #10157 )
2024-08-21 10:51:00 -07:00
AZaugg
bb4e1dc006
Add new package: Mosh to spec-extended ( #8976 )
...
Signed-off-by: Chris Co <chrco@microsoft.com>
Co-authored-by: Chris Co <chrco@microsoft.com>
2024-08-20 21:12:32 -07:00
CBL-Mariner-Bot
1171ff9846
[AUTOPATCHER-kernel] Kernel CVE - branch main - CVE-2024-36901 CVE-2024-41007 CVE-2024-41009 CVE-2024-42225 CVE-2024-42229 CVE-2024-42224 CVE-2024-42223 CVE-2024-42157 CVE-2024-42161 CVE-2024-42154 CVE-2024-42244 CVE-2024-42153 CVE-2024-42236 CVE-2024-42232 CVE-2024-42247 CVE-2024-42152 ( #10178 )
2024-08-19 22:13:35 -07:00
CBL-Mariner-Bot
f911450e0a
[AUTO-CHERRYPICK] Patch CVE-2024-7006 in libtiff - branch main ( #10154 )
...
Co-authored-by: aadhar-agarwal <108542189+aadhar-agarwal@users.noreply.github.com>
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-19 11:43:59 -07:00
CBL-Mariner-Bot
f8d9c8fb33
[AUTO-CHERRYPICK] bind: upgrade version 9.16.48 -> 9.16.50 & patch CVE-2024-1737, CVE-2024-1975 & CVE-2024-4076 - branch main ( #10131 )
...
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-08-19 11:43:12 -07:00
CBL-Mariner-Bot
f619b67495
[AUTO-CHERRYPICK] Patch cmake for CVE-2023-28320 - branch main ( #10137 )
...
Co-authored-by: joejoew <111843948+joejoew@users.noreply.github.com>
2024-08-19 11:43:03 -07:00
CBL-Mariner-Bot
bf54124512
[AUTO-CHERRYPICK] Patch Busybox for CVE-2021-42380, CVE-2023-42363, CVE-2023-42364 & CVE-2023-42365 - branch main ( #10130 )
...
Co-authored-by: suresh-thelkar <suresh.thelkar@yahoo.com>
2024-08-19 11:39:37 -07:00
CBL-Mariner-Bot
a58b51846f
[AUTO-CHERRYPICK] qt5-qtbase: Add patch to resolve CVE-2024-39936. - branch main ( #10129 )
...
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
2024-08-19 11:39:02 -07:00
CBL-Mariner-Bot
063e609db9
[AUTO-CHERRYPICK] Fix for CVE 2024 25620 in cert-manager - branch main ( #10127 )
...
Co-authored-by: bhagyapathak <bhagyapathak@users.noreply.github.com>
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-19 11:38:53 -07:00
CBL-Mariner-Bot
8380f30ee9
[AUTO-CHERRYPICK] Fix python-twisted CVEs CVE-2024-41671 and CVE-2024-41810 in 2.0 - branch main ( #10122 )
...
Co-authored-by: sindhu-karri <33163197+sindhu-karri@users.noreply.github.com>
2024-08-19 11:38:40 -07:00
CBL-Mariner-Bot
c595d61a5e
[AUTO-CHERRYPICK] Patch rust for CVE-2024-31852 and CVE-2024-32884 - branch main ( #10126 )
...
Co-authored-by: corvus-callidus <108946721+corvus-callidus@users.noreply.github.com>
2024-08-19 11:38:22 -07:00
CBL-Mariner-Bot
368eaf2803
[AUTO-CHERRYPICK] dhcp: Patch bundled bind for CVE-2024-1737 & CVE-2024-1975. - branch main ( #10121 )
...
Co-authored-by: Sumynwa <sumsharma@microsoft.com>
2024-08-19 11:38:12 -07:00
CBL-Mariner-Bot
a8025baebf
[AUTO-CHERRYPICK] protobuf: patch CVE-2022-1941 - branch main ( #10018 )
...
Co-authored-by: Archana Choudhary <36061892+arc9693@users.noreply.github.com>
2024-08-19 11:37:15 -07:00
CBL-Mariner-Bot
76613af222
[AUTO-CHERRYPICK] [AUTOPATCHER-kernel] Kernel upgrade to version 5.15.164.1 - branch fasttrack/2.0 - branch main ( #10170 )
2024-08-19 10:17:49 -07:00
CBL-Mariner-Bot
4c9a672bf4
[AUTOPATCHER-CORE] Upgrade postgresql to 14.13 CVE-2024-7348 ( #10112 )
2024-08-16 08:00:49 -07:00
CBL-Mariner-Bot
93ca32cc0d
[AUTOUPGRADE-CORE] Upgrade ca-certificates Msft cert change ( #10080 )
2024-08-13 17:37:39 -07:00
Gary Swalling
9659612d39
Update kernel-mos to 5.15.164.1 ( #10114 )
2024-08-13 10:48:10 -07:00
Sumynwa
5b1646c8a3
libtiff: Add patch to resolve CVE-2023-6277 ( #10048 )
2024-08-13 10:55:54 +05:30
Pawel Winogrodzki
45be18fd7e
Disabled PR check debug mode by default. (CP: #9795 ) ( #10096 )
2024-08-12 10:11:02 -07:00
Bala
396b7c7113
Fix CVE-2024-6104 in influxdb by patching vendor package source ( #9987 )
2024-08-12 16:12:11 +05:30
Bala
0dc23ab2f5
Fix CVE-2024-6104 in keda by patching vendor gomodule ( #9990 )
2024-08-12 16:11:38 +05:30
Bala
60d4679885
Fix CVE-2024-6104 in cert-manager by patching vendor package sources ( #9981 )
2024-08-12 16:11:12 +05:30
Bala
2469e3fe7f
Fix CVE-2024-6104 in cri-o by patching vendor package source ( #9986 )
2024-08-12 16:10:37 +05:30
Bala
9b3f2cc063
Fix CVE-2024-6104 in rook by patching vendor gomodule ( #9993 )
2024-08-12 16:09:49 +05:30
Bala
eb5dffcf4f
Fix CVE-2024-6104 in Prometheus by patching vendor gomodule ( #9992 )
2024-08-12 16:09:31 +05:30
Bala
5512944fc6
Fix CVE-2024-6104 in Packer by patching vendor gomodule ( #9991 )
2024-08-12 16:08:33 +05:30
amritakohli
06b9340c14
js-jquery: Patch CVE-2019-20149 in kind-of ( #10086 )
...
Co-authored-by: Mykhailo Bykhovtsev <108374904+mbykhovtsev-ms@users.noreply.github.com>
2024-08-09 16:12:09 -07:00
CBL-Mariner-Bot
4308a0c426
[AUTOPATCHER-kernel] Kernel CVE - branch main - CVE-2023-52340, CVE-2024-26900, CVE-2022-48788, CVE-2022-48841, CVE-2024-39473, CVE-2024-39474, CVE-2024-39483, CVE-2024-39485, CVE-2024-42071, CVE-2024-42072, CVE-2024-42073, CVE-2024-42074, CVE-2024-42075, CVE-2024-42078, CVE-2024-42083, CVE-2024-42237 ( #9822 )
2024-08-09 13:46:15 -07:00
Ksenija Stanojevic
ded22fb0a6
feat(cloud-init): add support for azure-proxy-agent ( #9878 )
...
Adds preliminary support for azure-proxy-agent into cloud-init. This is opt-in only with fallbacks if the command isn't available.
2024-08-07 19:29:48 -07:00
Christopher Co
298bda4a7d
fix: correct moby-engine cherry-pick to keep consistency ( #10028 )
...
Cherry-pick of CVE-2024-41110 from fast-track branch to main branch was malformed. Correct the inconsistency by keeping "-7" release version as the CVE fix since this is what is published via fast-track, and then update #9877 to be "-8" release, which will be built and published at next opportunity.
fixes : #9966 : "[AUTO-CHERRYPICK] fix CVE-2024-41110 in moby-engine - branch main"
Signed-off-by: Chris Co <chrco@microsoft.com>
2024-08-06 19:58:41 -07:00
Daniel McIlvaney
de885a9964
Backport: Update toolkit's gonum to v0.15.0 ( #9965 )
...
Co-authored-by: Sam Meluch <109628994+sameluch@users.noreply.github.com>
2024-08-06 13:11:26 -07:00
Archana Choudhary
1dcd90c10e
azcopy: upgrade version to 10.25.1 to fix CVE-2024-35255 ( #9581 )
2024-08-06 16:29:43 +05:30
CBL-Mariner-Bot
dc4b0b34f9
[AUTO-CHERRYPICK] libcontainers-common: patch CVE-2021-43565 - branch main ( #9975 )
...
Co-authored-by: Archana Choudhary <36061892+arc9693@users.noreply.github.com>
2024-08-01 14:12:47 +05:30