aa588bc8b7
merge 3.0 dev into 3.0 ( #8205 )
...
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
Co-authored-by: Paco Huelsz <frhuelsz@microsoft.com>
Co-authored-by: Andrew Phelps <anphel31@users.noreply.github.com>
Co-authored-by: alejandro-microsoft <128648451+alejandro-microsoft@users.noreply.github.com>
Co-authored-by: CBL-Mariner Servicing Account <cblmargh@microsoft.com>
Co-authored-by: SeanDougherty <sdougherty@microsoft.com>
Co-authored-by: Henry Beberman <henry.beberman@microsoft.com>
Co-authored-by: Henry Li <69694695+henryli001@users.noreply.github.com>
Co-authored-by: Henry Li <lihl@microsoft.com>
Co-authored-by: Bala <kumaran.4353@gmail.com>
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
Co-authored-by: suresh-thelkar <suresh.thelkar@yahoo.com>
Co-authored-by: Dan Streetman <ddstreet@microsoft.com>
Co-authored-by: Mandeep Plaha <99760213+mandeepsplaha@users.noreply.github.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
Co-authored-by: George Mileka <gmileka@users.noreply.github.com>
Co-authored-by: CBL-Mariner-Bot <75509084+CBL-Mariner-Bot@users.noreply.github.com>
Co-authored-by: lanzeliu <lanzeliu@microsoft.com>
Co-authored-by: Karim Eldegwy <kimoantiqe@hotmail.com>
Co-authored-by: osamaesmailmsft <110202916+osamaesmailmsft@users.noreply.github.com>
Co-authored-by: Tobias Brick <39196763+tobiasb-ms@users.noreply.github.com>
Co-authored-by: abadawi-msft <108105696+abadawi591@users.noreply.github.com>
Co-authored-by: Mykhailo Bykhovtsev <108374904+mbykhovtsev-ms@users.noreply.github.com>
Co-authored-by: sindhu-karri <33163197+sindhu-karri@users.noreply.github.com>
Co-authored-by: Rohit Rawat <rohitrawat@microsoft.com>
Co-authored-by: Dan Streetman <ddstreet@ieee.org>
Co-authored-by: Nan Liu <108544011+liunan-ms@users.noreply.github.com>
Co-authored-by: Neha Agarwal <58672330+neha170@users.noreply.github.com>
Co-authored-by: Adit Jha <aditjha@microsoft.com>
Co-authored-by: Nan Liu <liunan@microsoft.com>
Co-authored-by: ypanch <yashpanchal@microsoft.com>
Co-authored-by: Trung <tvuong@microsoft.com>
Co-authored-by: Rakshaa Viswanathan <rviswanathan@microsoft.com>
Co-authored-by: Rakshaa Viswanathan <46165429+rakshaa2000@users.noreply.github.com>
Co-authored-by: Daniel McIlvaney <damcilva@microsoft.com>
Co-authored-by: Chris Gunn <chrisgun@microsoft.com>
Co-authored-by: Cameron E Baird <cameronbaird@microsoft.com>
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
Co-authored-by: Adub17030MS <110563293+Adub17030MS@users.noreply.github.com>
Co-authored-by: Sam Meluch <109628994+sameluch@users.noreply.github.com>
Co-authored-by: Sam Meluch <samemluch@microsoft.com>
Co-authored-by: himaja-kesari <123194058+himaja-kesari@users.noreply.github.com>
Co-authored-by: Aurélien Bombo <abombo@microsoft.com>
Co-authored-by: Lanze Liu <86434077+liulanze@users.noreply.github.com>
Co-authored-by: ms-mahuber <60939654+ms-mahuber@users.noreply.github.com>
Co-authored-by: Kanika Nema <kanikanema@microsoft.com>
2024-03-01 06:42:34 -08:00
7a5401b6d3
Renaming mariner-release into azurelinux-release ( #7545 )
2024-02-09 10:19:19 -08:00
6359c27c2d
treewide: *.spec: switch Distribution to Azure Linux ( #7606 )
...
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-02-06 12:14:23 -08:00
6a493709c8
*.signatures.json: add a newline EOF to files that do not have one ( #7147 )
...
This is an automated change & the command used is:
find -name '*.signatures.json' -exec sh -c '[ -n "$(tail -c1 {})" ] && echo >> {}' \;
Reference: https://stackoverflow.com/a/729795
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-01-11 14:58:09 +05:30
15bf461433
Fix golang CVE-2023-29409, CVE-2023-39318, CVE-2023-39319, CVE-2023-39323, CVE-2023-39533 ( #6470 )
2023-10-31 14:50:57 -07:00
01547eeed5
Fixed CVE-2023-44487 in `nginx` and `golang` (CP of #6381 ) ( #6395 )
...
* Fixed CVE-2023-44487 in `nginx` and `golang` (#6381 )
Co-authored-by: Dan Streetman <ddstreet@ieee.org>
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
* Bumping 'kubernetes'.
---------
Co-authored-by: Dan Streetman <ddstreet@microsoft.com>
Co-authored-by: Dan Streetman <ddstreet@ieee.org>
2023-10-12 14:22:26 -07:00
e2ad74a2ca
Upgrade golang to 1.19.12 to address CVE-2023-29409 ( #5946 )
...
* golang: introduce patch to permit requests with invalid host headers
Reference: https://go-review.googlesource.com/c/go/+/518855
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-08-16 10:15:25 +05:30
78e1d24d47
Upgrade golang to 1.19.11 to fix CVE-2023-29406 ( #5828 )
2023-07-13 13:55:07 -07:00
c5a190f783
[AUTOPATCHER-CORE] Upgrade golang to 1.19.10 Address CVE-2023-24540, CVE-2023-29402, CVE-2023-29403, CVE-2023-29404, CVE-2023-29405 ( #5689 )
...
* Upgrade golang to 1.19.10 Adress CVEs
* Fix changelog
---------
Co-authored-by: Mitch Zhu <mitchzhu@microsoft.com>
2023-06-20 13:39:41 -07:00
a364e616af
golang: upgrade to 1.19.8 to address CVE-2023-24534, CVE-2023-24536, CVE-2023-24537, CVE-2023-24538 ( #5228 )
...
Reference: https://github.com/golang/go/issues?q=milestone%3AGo1.19.8+label%3ASecurity
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-04-05 21:38:04 +05:30
42a2d6d72d
Upgrade golang to 1.19.7 to address CVE-2023-24532 ( #5160 )
...
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-03-28 13:20:34 +05:30
768aae23e3
Upgrade golang to 1.19.6 Address CVE-2022-41722, CVE-2022-41724, CVE-2022-41725, CVE-2022-41723 ( #5096 )
...
Co-authored-by: Rakshaa Viswanathan <46165429+rakshaa2000@users.noreply.github.com>
2023-03-17 21:20:58 +05:30
5ed28413bb
[AUTOPATCHER-CORE] Upgrade golang to 1.19.5 upgrade to latest - ( #4759 )
...
* Upgrade golang to 1.19.5 upgrade to latest
* remove release bump of spec that should stay on golang 1.18.8 or below
2023-02-03 20:56:43 +01:00
63c1d45e66
[AUTOPATCHER-CORE] Upgrade golang to 1.19.4 upgrade to latest - ( #4643 )
...
* Upgrade golang to 1.19.4 upgrade to latest
* fix issues due to golang 1.19.4 upgrade
* re-add CVE-2022-41717.patch which is required by golang 1.17 spec
* clean up gh dependencies
2023-01-19 18:37:17 +01:00
449fbf1b41
Patch golang to resolve CVE-2022-41717 ( #4457 )
...
* Patch golang to resolve CVE-2022-41717
2022-12-19 12:17:43 -08:00
a828f488f8
Upgrade golang to 1.18.8 to fix CVE-2022-2879, CVE-2022-2880, CVE-2022-41715, CVE-2022-27664, CVE-2022-32190 ( #4157 )
2022-11-01 16:37:38 -07:00
6445bf8dca
added arm64 support for node-problem-detector which is needed to support ARM64 AKS ( #3623 )
2022-09-01 16:52:46 -07:00
fdc6619ad3
Bump supported go versions to 1.17.13, 1.18.5 to fix fifteen CVEs ( #3600 )
...
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2022-08-24 09:01:02 -07:00
d76052103a
golang: bump version to 1.18.3 to address CVE-2022-24675 & CVE-2022-28327 ( #3163 )
...
* golang: rename specfile golang-1.17.spec -> golang.spec
* golang: bump version to 1.18.3 to address CVE-2022-24675 & CVE-2022-28327
* golang: bump release of dependent packages to force rebuild
* keda: verify license
* helm: verify license
* moby-containerd: bump version to 1.6.2 to address CVE-2022-24769
* golang: add go-1.17.10 to enable cert-manager
* cert-manger: add a hard BR on golang <= 1.17.10
* golang-17: add entry to cgimanifest
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2022-06-16 23:07:41 +05:30
8c8298b103
node-problem-detector: Add explicit check/run-time dependencies on mariner-release ( #3089 )
2022-06-01 12:18:44 -07:00
c2670ffa16
[main] upgrading node-problem-detector to v0.8.10 ( #2343 )
...
* upgrading ndp to v0.8.10
* upgrading node-problem-detector to v0.8.10
* adding changelog for node-problem-detector
* fixing release number for node-problem-detector
* splitting patch file in two for cleanliness
2022-03-02 10:32:07 -08:00
17b0e93e71
Merge 1.0 to dev branch
...
This merge brings the latest SELinux and many packages and CVE fixes from the 1.0 branch.
2021-08-19 13:46:51 -07:00
nicolas guibourge
Mykhailo Bykhovtsev
Muhammad Falak R Wani
Nan Liu
Pawel Winogrodzki
CBL-Mariner-Bot
Daniel McIlvaney
Olivia Crain
SeanDougherty
Olivia Crain
Max Brodeur-Urbas
jslobodzian