Граф коммитов

3933 Коммитов

Автор SHA1 Сообщение Дата
CBL-Mariner-Bot 3eb66d1e29
[AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade msft-golang to 1.22.8 To fix CVE-2022-41717 - branch main (#10834) 2024-10-25 14:41:49 -04:00
CBL-Mariner-Bot 4401d89fad
[AUTO-CHERRYPICK] Added Patch CVE-2022-25255 for qt5-qtbase - branch main (#10835)
Co-authored-by: Mykhailo Bykhovtsev <108374904+mbykhovtsev-ms@users.noreply.github.com>
2024-10-25 14:41:25 -04:00
CBL-Mariner-Bot 4dd3ddf0b0
[AUTO-CHERRYPICK] Upgrade mysql to 8.0.40 - branch main (#10809)
Co-authored-by: Sudipta Pandit <sudpandit@microsoft.com>
2024-10-25 14:40:38 -04:00
CBL-Mariner-Bot 7f7a3b897b
Prepare November 2024 (#10845) 2024-10-25 08:50:34 -04:00
Rachel Menge c5b6704f80
Remove Amateur Radio X.25 PLP Rose for CVE-2022-2961 (#10826)
The rose_bind() function which is used in the AX.25 PLP Rose protocol introduced a race condition which has CVE-2022-2961. Therefore remove rose support.
2024-10-24 14:40:32 -07:00
CBL-Mariner-Bot 1729e7544b
[AUTO-CHERRYPICK] Patch Reaper for multiple CVEs - branch main (#10735)
Co-authored-by: Rohit Rawat <rohitrawat@microsoft.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
Co-authored-by: Riken Maharjan <rmaharjan@microsoft.com>
2024-10-23 11:47:18 -07:00
Muhammad Falak R Wani b958bee0c4
curl: address CVE-2024-8096 (#10731)
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-10-23 11:40:11 +05:30
Muhammad Falak R Wani 60d78f8b22
nghttp2: address CVE-2024-28182 (#10656)
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-10-23 09:18:37 +05:30
Muhammad Falak R Wani 2ab7767a79
gnutls: upgrade 3.7.7 -> 3.7.11 to address CVE-2023-5981, CVE-2024-28835, CVE-2024-28834 & CVE-2024-0553 (#10578)
Changelog: https://gitlab.com/gnutls/gnutls/-/blob/3.7.11/NEWS
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-10-23 09:16:25 +05:30
Muhammad Falak R Wani db8338b9b1
apr: upgrade version 1.7.2 -> 1.7.5 to address CVE-2023-49582 (#10749)
Changelog: https://downloads.apache.org/apr/CHANGES-APR-1.7
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-10-23 09:07:02 +05:30
Mitch Zhu 08e99cef68
Patch gdb 11.2 for CVE-2023-39128, CVE-2023-39129, CVE-2023-39130 (#10683) 2024-10-22 13:13:48 -07:00
CBL-Mariner-Bot 78c1dd1dc9
[AUTOPATCHER-CORE] Upgrade php to 8.1.30 CVE-2024-8927, CVE-2024-8925 (#10795) 2024-10-22 12:06:02 +05:30
Dallas Delaney 8f60da79d4
rubygem-async-http: remove version dependency of rubygem-protocol-http1 (#10682)
Co-authored-by: Dallas Delaney <dadelan@example.com>
2024-10-21 18:02:58 -07:00
Sudipta Pandit 9cc3b9949b
libpcap: Backport fixes for CVE-2024-8006 (#10793) 2024-10-22 02:04:46 +05:30
Sudipta Pandit 8b11ebddc9
Upgrade redis to 6.2.16 (#10798) 2024-10-22 02:03:49 +05:30
Chris Gunn 770cf87559
fluent-bit: CVE-2024-26455, CVE-2024-25629 (#10739) 2024-10-21 12:09:50 -07:00
Henry Li fece1b0dd3
[2.0] Resolve kubernetes CVE-2024-24786 (#10669)
Co-authored-by: Henry Li <lihl@microsoft.com>
2024-10-18 14:02:58 -07:00
CBL-Mariner-Bot 95c646c8e7
[AUTO-CHERRYPICK] Patch vim to resolve CVE-2024-43802 - branch main (#10771)
Co-authored-by: Sam Meluch <109628994+sameluch@users.noreply.github.com>
2024-10-18 15:31:55 -04:00
CBL-Mariner-Bot cdd7571aab
[AUTO-CHERRYPICK] libarchive: Patch CVE-2024-48957, CVE-2024-48958, CVE-2024-20696 - branch main (#10770)
Co-authored-by: Nan Liu <108544011+liunan-ms@users.noreply.github.com>
2024-10-18 15:31:34 -04:00
CBL-Mariner-Bot 054eed9904
[AUTO-CHERRYPICK] Patch terraform to resolve CVE-2022-32149 & CVE-2023-4782 - branch main (#10755)
Co-authored-by: Sumedh Alok Sharma <sumsharma@microsoft.com>
2024-10-18 15:30:59 -04:00
CBL-Mariner-Bot f43a558e8d
[AUTO-CHERRYPICK] Fix CVE 2024 24786 and CVE 2022 41717 for prometheus - branch main (#10737)
Co-authored-by: bhagyapathak <bhagyapathak@users.noreply.github.com>
2024-10-18 15:30:42 -04:00
CBL-Mariner-Bot f7e825f60a
[AUTO-CHERRYPICK] Apply security fix for CVE-2024-28180 by patching vendored go-jose - branch main (#10736)
Co-authored-by: abadawi-msft <108105696+abadawi591@users.noreply.github.com>
2024-10-18 15:30:21 -04:00
CBL-Mariner-Bot e88c36d034
[AUTO-CHERRYPICK] Upgrade OpenIPMI to 2.0.36 to fix CVE-2024-42934 - branch main (#10734)
Co-authored-by: suresh-thelkar <suresh.thelkar@yahoo.com>
2024-10-18 14:55:10 -04:00
CBL-Mariner-Bot a41e552a4e
[AUTO-CHERRYPICK] Patch CVE-2022-28506 and CVE-2023-48161 in giflib - branch main (#10733)
Co-authored-by: suresh-thelkar <suresh.thelkar@yahoo.com>
2024-10-18 14:54:26 -04:00
CBL-Mariner-Bot 6cc144262e
[AUTO-CHERRYPICK] Patch CVE-2024-31449 in redis - branch main (#10732)
Co-authored-by: suresh-thelkar <suresh.thelkar@yahoo.com>
2024-10-18 14:53:39 -04:00
Sumedh Alok Sharma ca21053edc
Patch cni-plugins to resolve CVE-2023-3978 (#10689) 2024-10-15 11:16:33 +05:30
Henry Li 10ccf03d75
[2.0] Resolve kubernetes CVE-2024-28180 (#10668)
Co-authored-by: Henry Li <lihl@microsoft.com>
2024-10-14 22:20:02 -07:00
Henry Li d97b713262
[2.0] Resolve dcos-cli CVE-2024-28180 (#10667)
Co-authored-by: Henry Li <lihl@microsoft.com>
2024-10-14 22:19:37 -07:00
CBL-Mariner-Bot d3b1c72ca5
[AUTO-CHERRYPICK] Patch unbound to fix CVE-2024-33655, CVE-2024-8508, and CVE-2024-43167 - branch main (#10674)
Co-authored-by: Sam Meluch <109628994+sameluch@users.noreply.github.com>
2024-10-10 14:48:13 -07:00
Muhammad Falak R Wani 7b9cd9b10c
gh: address CVE-2022-32149 (#10334)
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-10-10 15:01:50 +05:30
CBL-Mariner-Bot 9e55d13d8b
[AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade nvidia-container-toolkit to 1.16.2 Critical vulnerability CVE-2024-0132, Medium vulnerability CVE-2024-0133 - branch main (#10660) 2024-10-09 13:50:37 -07:00
CBL-Mariner-Bot 6d7ba8b546
[AUTO-CHERRYPICK] Fix CVE-2024-47191 in oath-toolkit - branch main (#10650)
Co-authored-by: Mandeep Plaha <99760213+mandeepsplaha@users.noreply.github.com>
2024-10-09 13:50:18 -07:00
Rohit Rawat 1b8263cf25
Patch CVE-2024-45590 in reaper (#10557) 2024-10-09 20:02:15 +05:30
CBL-Mariner-Bot 7322224044
[AUTOPATCHER-kernel] Kernel CVE - branch main - CVE-2024-38381 CVE-2024-42228 CVE-2024-38577 CVE-2024-41098 CVE-2024-42246 CVE-2024-43853 CVE-2024-43905 CVE-2024-43884 CVE-2024-44946 CVE-2024-44986 CVE-2024-44987 CVE-2024-44985 CVE-2024-44974 CVE-2024-43892 CVE-2024-43897 CVE-2024-44989 CVE-2024-44999 CVE-2024-44995 CVE-2024-44990 CVE-2024-45006 CVE-2024-41011 CVE-2024-44998 CVE-2024-44983 CVE-2024-46677 CVE-2024-45021 CVE-2024-46674 CVE-2024-45026 CVE-2024-45025 CVE-2024-46673 CVE-2024-45009 CVE-2024-45028 CVE-2024-45011 CVE-2024-45018 CVE-2024-45016 CVE-2024-46685 CVE-2024-44947 CVE-2024-38588 CVE-2024-42297 CVE-2024-43829 CVE-2024-46863 (#10406)
Handle CVE-2024-38381 CVE-2024-42228 CVE-2024-38577 CVE-2024-41098 CVE-2024-42246 CVE-2024-43853 CVE-2024-43905 CVE-2024-43884 CVE-2024-44946 CVE-2024-44986 CVE-2024-44987 CVE-2024-44985 CVE-2024-44974 CVE-2024-43892 CVE-2024-43897 CVE-2024-44989 CVE-2024-44999 CVE-2024-44995 CVE-2024-44990 CVE-2024-45006 CVE-2024-41011 CVE-2024-44998 CVE-2024-44983 CVE-2024-46677 CVE-2024-45021 CVE-2024-46674 CVE-2024-45026 CVE-2024-45025 CVE-2024-46673 CVE-2024-45009 CVE-2024-45028 CVE-2024-45011 CVE-2024-45018 CVE-2024-45016 CVE-2024-46685 CVE-2024-44947 CVE-2024-38588 CVE-2024-42297 CVE-2024-43829 CVE-2024-46863
2024-10-07 19:06:22 -07:00
CBL-Mariner-Bot 6677f60264
[AUTO-CHERRYPICK] python3: Add patch for CVE-2024-4032 - branch main (#10620)
Co-authored-by: Ankita Pareek <56152556+Ankita13-code@users.noreply.github.com>
2024-10-04 14:17:25 -07:00
CBL-Mariner-Bot e9c8962636
[AUTO-CHERRYPICK] heimdal: Add backported patch for fixing CVE-2022-3116 - branch main (#10615)
Co-authored-by: Ankita Pareek <56152556+Ankita13-code@users.noreply.github.com>
2024-10-04 14:17:11 -07:00
jslobodzian a8d7f4b9ae
Prepare October 2024 Update (#10548)
Co-authored-by: CBL-Mariner Servicing Account <cblmargh@microsoft.com>
2024-10-04 11:08:34 -04:00
CBL-Mariner-Bot a67cb06cad
[AUTO-CHERRYPICK] apply patch to fix CVE-2024-6232 and CVE-2024-8088 for python3 2.0 - branch main (#10553)
Co-authored-by: himaja-kesari <123194058+himaja-kesari@users.noreply.github.com>
2024-09-26 11:41:52 -07:00
CBL-Mariner-Bot 271b7dc767
[AUTO-CHERRYPICK] Update openssl to 3.3.2 under cloud-hypervisor-cvm in order to address CVE-2024-6119 - branch main (#10530)
Co-authored-by: Jiri Appl <jiria@microsoft.com>
Co-authored-by: Riken Maharjan <rmaharjan@microsoft.com>
2024-09-26 11:37:05 -07:00
Rohit Rawat eee1b27598
Patch CVE-2024-43796 in reaper (#10543) 2024-09-25 15:38:22 +05:30
CBL-Mariner-Bot b2015ea737
[AUTO-CHERRYPICK] Add patch for CVE-2024-41946 to ruby and rubygem-rexml - branch main (#10510)
Co-authored-by: Harshit Gupta <harshitgupta1337@gmail.com>
2024-09-24 11:43:59 -07:00
CBL-Mariner-Bot d0eb3f3a76
[AUTO-CHERRYPICK] Patch gdk-pixbuf2 for CVE-2022-48622. - branch main (#10508)
Co-authored-by: Sumedh Alok Sharma <sumsharma@microsoft.com>
2024-09-24 11:43:46 -07:00
CBL-Mariner-Bot bec544d490
[AUTO-CHERRYPICK] add edk2 patches for CVE-2022-36763, CVE-2022-36764, CVE-2022-36765, CVE-2023-45230, CVE-2023-45236, CVE-2023-45232, CVE-2023-45233, CVE-2023-45234, CVE-2023-45235, CVE-2023-45237 - branch main (#10516)
Co-authored-by: Minghe Ren <mingheren@microsoft.com>
2024-09-24 11:43:38 -07:00
CBL-Mariner-Bot 0dd6087151
[AUTO-CHERRYPICK] Patch CVE-2023-27534 in cmake - branch main (#10509)
Co-authored-by: suresh-thelkar <suresh.thelkar@yahoo.com>
2024-09-24 11:43:24 -07:00
CBL-Mariner-Bot 6f47c6bd34
[AUTO-CHERRYPICK] Fixes CVE-2022-32149 by backporting the fix as a patch file - branch main (#10507)
Co-authored-by: Jiri Appl <jiria@microsoft.com>
2024-09-19 13:31:07 -07:00
CBL-Mariner-Bot 99c054afa8
[AUTO-CHERRYPICK] Revert to 1.19.4, add epoch and add patch for CVE-2024-37371 and CVE-2024-37370 - branch main (#10491)
Co-authored-by: nicolas guibourge <nicogbg@gmail.com>
2024-09-19 13:21:37 -07:00
CBL-Mariner-Bot fe555eb3f8
[AUTO-CHERRYPICK] Patch libxml2 to resolve CVE-2024-25062 - branch main (#10490)
Co-authored-by: Sumedh Alok Sharma <sumsharma@microsoft.com>
2024-09-19 11:49:26 -07:00
CBL-Mariner-Bot a2726f6105
[AUTO-CHERRYPICK] Patch influxdb to resolve CVE-2022-32149 - branch main (#10495)
Co-authored-by: Sumedh Alok Sharma <sumsharma@microsoft.com>
2024-09-19 11:48:24 -07:00
CBL-Mariner-Bot 795266d619
[AUTO-CHERRYPICK] Patch xorg-x11-server for CVE-2024-0229, CVE-2024-0409 & CVE-2024-21886 - branch main (#10496)
Co-authored-by: Sumedh Alok Sharma <sumsharma@microsoft.com>
2024-09-19 11:48:15 -07:00
Sumedh Alok Sharma 65a3f016ae
vim: Add patch to resolve CVE-2024-41957 & CVE-2024-41965. (#10081) 2024-09-19 10:58:33 +05:30