diff --git a/charts/dependency/mariadb/CHANGELOG.md b/charts/dependency/mariadb/CHANGELOG.md index d7399a631bc..5fc78005d05 100644 --- a/charts/dependency/mariadb/CHANGELOG.md +++ b/charts/dependency/mariadb/CHANGELOG.md @@ -1,6 +1,16 @@ # Changelog
+ +### [mariadb-3.0.16](https://github.com/truecharts/apps/compare/mariadb-3.0.15...mariadb-3.0.16) (2022-06-24) + +#### Chore + +* update helm chart common to v10.1.2 +* update docker general non-major ([#2954](https://github.com/truecharts/apps/issues/2954)) + + + ### [mariadb-3.0.15](https://github.com/truecharts/apps/compare/mariadb-3.0.14...mariadb-3.0.15) (2022-06-22) diff --git a/charts/dependency/mariadb/Chart.yaml b/charts/dependency/mariadb/Chart.yaml index 2c01dd4d2fd..3f0a656a29d 100644 --- a/charts/dependency/mariadb/Chart.yaml +++ b/charts/dependency/mariadb/Chart.yaml @@ -1,5 +1,5 @@ apiVersion: v2 -appVersion: "10.7.4" +appVersion: "10.8.3" dependencies: - name: common repository: https://library-charts.truecharts.org diff --git a/charts/dependency/mariadb/README.md b/charts/dependency/mariadb/README.md index 6c720c6b76c..14e282b1f90 100644 --- a/charts/dependency/mariadb/README.md +++ b/charts/dependency/mariadb/README.md @@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://library-charts.truecharts.org | common | 10.1.1 | +| https://library-charts.truecharts.org | common | 10.1.2 | ## Installing the Chart diff --git a/charts/dependency/mariadb/security.md b/charts/dependency/mariadb/security.md index 2494ed07fcb..8d91ec491dc 100644 --- a/charts/dependency/mariadb/security.md +++ b/charts/dependency/mariadb/security.md @@ -40,7 +40,7 @@ hide: ##### Detected Containers tccr.io/truecharts/alpine:v3.16.0@sha256:16dc15f3d61a1e30b1df9f839e53636847b6097286b2b74c637b25fd8264f730 - tccr.io/truecharts/mariadb:v10.7.4@sha256:2e2c1d19a9192dfb48721928d1820ec71bd393c08dfb0aea9698f3128a3101fa + tccr.io/truecharts/mariadb:v10.8.3@sha256:838895128e226c4044bc9cffc055986ce8dd45286dabb847a7c1993c51c56921 ##### Scan Results @@ -57,7 +57,7 @@ hide: -#### Container: tccr.io/truecharts/mariadb:v10.7.4@sha256:2e2c1d19a9192dfb48721928d1820ec71bd393c08dfb0aea9698f3128a3101fa (debian 11.3) +#### Container: tccr.io/truecharts/mariadb:v10.8.3@sha256:838895128e226c4044bc9cffc055986ce8dd45286dabb847a7c1993c51c56921 (debian 11.3) **debian** diff --git a/charts/dependency/memcached/CHANGELOG.md b/charts/dependency/memcached/CHANGELOG.md index 6c7e4ea7e7e..d76cbec2eb3 100644 --- a/charts/dependency/memcached/CHANGELOG.md +++ b/charts/dependency/memcached/CHANGELOG.md @@ -1,6 +1,15 @@ # Changelog
+ +### [memcached-3.0.16](https://github.com/truecharts/apps/compare/memcached-3.0.15...memcached-3.0.16) (2022-06-24) + +#### Chore + +* update helm chart common to v10.1.2 + + + ### [memcached-3.0.15](https://github.com/truecharts/apps/compare/memcached-3.0.14...memcached-3.0.15) (2022-06-22) diff --git a/charts/dependency/memcached/README.md b/charts/dependency/memcached/README.md index dbcba1bbb6e..90368af4eed 100644 --- a/charts/dependency/memcached/README.md +++ b/charts/dependency/memcached/README.md @@ -18,7 +18,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://library-charts.truecharts.org | common | 10.1.1 | +| https://library-charts.truecharts.org | common | 10.1.2 | ## Installing the Chart diff --git a/charts/dependency/mongodb/CHANGELOG.md b/charts/dependency/mongodb/CHANGELOG.md index 21c6a1827dd..eb3faa5df22 100644 --- a/charts/dependency/mongodb/CHANGELOG.md +++ b/charts/dependency/mongodb/CHANGELOG.md @@ -1,6 +1,15 @@ # Changelog
+ +### [mongodb-1.0.17](https://github.com/truecharts/apps/compare/mongodb-1.0.16...mongodb-1.0.17) (2022-06-24) + +#### Chore + +* update helm chart common to v10.1.2 + + + ### [mongodb-1.0.16](https://github.com/truecharts/apps/compare/mongodb-1.0.15...mongodb-1.0.16) (2022-06-22) diff --git a/charts/dependency/mongodb/README.md b/charts/dependency/mongodb/README.md index d7dbadb9763..d47dc7ab12b 100644 --- a/charts/dependency/mongodb/README.md +++ b/charts/dependency/mongodb/README.md @@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://library-charts.truecharts.org | common | 10.1.1 | +| https://library-charts.truecharts.org | common | 10.1.2 | ## Installing the Chart diff --git a/charts/dependency/mongodb/security.md b/charts/dependency/mongodb/security.md index ba42a238ec1..7d0596b6cf9 100644 --- a/charts/dependency/mongodb/security.md +++ b/charts/dependency/mongodb/security.md @@ -281,53 +281,53 @@ hide: | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.5 | 0.3.7 |
Expand...https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| +| golang.org/x/text | CVE-2021-38561 | HIGH | v0.3.5 | 0.3.7 |
Expand...https://access.redhat.com/security/cve/CVE-2021-38561
https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| **gobinary** | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.5 | 0.3.7 |
Expand...https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| +| golang.org/x/text | CVE-2021-38561 | HIGH | v0.3.5 | 0.3.7 |
Expand...https://access.redhat.com/security/cve/CVE-2021-38561
https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| **gobinary** | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.5 | 0.3.7 |
Expand...https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| +| golang.org/x/text | CVE-2021-38561 | HIGH | v0.3.5 | 0.3.7 |
Expand...https://access.redhat.com/security/cve/CVE-2021-38561
https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| **gobinary** | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.5 | 0.3.7 |
Expand...https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| +| golang.org/x/text | CVE-2021-38561 | HIGH | v0.3.5 | 0.3.7 |
Expand...https://access.redhat.com/security/cve/CVE-2021-38561
https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| **gobinary** | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.5 | 0.3.7 |
Expand...https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| +| golang.org/x/text | CVE-2021-38561 | HIGH | v0.3.5 | 0.3.7 |
Expand...https://access.redhat.com/security/cve/CVE-2021-38561
https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| **gobinary** | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.5 | 0.3.7 |
Expand...https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| +| golang.org/x/text | CVE-2021-38561 | HIGH | v0.3.5 | 0.3.7 |
Expand...https://access.redhat.com/security/cve/CVE-2021-38561
https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| **gobinary** | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.5 | 0.3.7 |
Expand...https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| +| golang.org/x/text | CVE-2021-38561 | HIGH | v0.3.5 | 0.3.7 |
Expand...https://access.redhat.com/security/cve/CVE-2021-38561
https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| **gobinary** | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.5 | 0.3.7 |
Expand...https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| +| golang.org/x/text | CVE-2021-38561 | HIGH | v0.3.5 | 0.3.7 |
Expand...https://access.redhat.com/security/cve/CVE-2021-38561
https://go.dev/cl/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| diff --git a/charts/dependency/postgresql/CHANGELOG.md b/charts/dependency/postgresql/CHANGELOG.md index 7f2b6984b6b..de8aaf9ff8c 100644 --- a/charts/dependency/postgresql/CHANGELOG.md +++ b/charts/dependency/postgresql/CHANGELOG.md @@ -1,6 +1,15 @@ # Changelog
+ +### [postgresql-8.0.17](https://github.com/truecharts/apps/compare/postgresql-8.0.16...postgresql-8.0.17) (2022-06-24) + +#### Chore + +* update helm chart common to v10.1.2 + + + ### [postgresql-8.0.16](https://github.com/truecharts/apps/compare/postgresql-8.0.15...postgresql-8.0.16) (2022-06-22) diff --git a/charts/dependency/postgresql/README.md b/charts/dependency/postgresql/README.md index ba3e9d1d3f2..41e1f0a6383 100644 --- a/charts/dependency/postgresql/README.md +++ b/charts/dependency/postgresql/README.md @@ -17,7 +17,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://library-charts.truecharts.org | common | 10.1.1 | +| https://library-charts.truecharts.org | common | 10.1.2 | ## Installing the Chart diff --git a/charts/dependency/promtail/CHANGELOG.md b/charts/dependency/promtail/CHANGELOG.md index a34cefd4d4c..742036ef547 100644 --- a/charts/dependency/promtail/CHANGELOG.md +++ b/charts/dependency/promtail/CHANGELOG.md @@ -1,6 +1,15 @@ # Changelog
+ +### [promtail-3.0.12](https://github.com/truecharts/apps/compare/promtail-3.0.11...promtail-3.0.12) (2022-06-24) + +#### Chore + +* update helm chart common to v10.1.2 + + + ### [promtail-3.0.11](https://github.com/truecharts/apps/compare/promtail-3.0.10...promtail-3.0.11) (2022-06-22) diff --git a/charts/dependency/promtail/README.md b/charts/dependency/promtail/README.md index 72eb496b57a..df2533f7525 100644 --- a/charts/dependency/promtail/README.md +++ b/charts/dependency/promtail/README.md @@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://library-charts.truecharts.org | common | 10.1.1 | +| https://library-charts.truecharts.org | common | 10.1.2 | ## Installing the Chart diff --git a/charts/dependency/promtail/security.md b/charts/dependency/promtail/security.md index a758da9a0c5..1fd1fa58d91 100644 --- a/charts/dependency/promtail/security.md +++ b/charts/dependency/promtail/security.md @@ -104,7 +104,7 @@ hide: | libsepol1 | CVE-2021-36087 | LOW | 3.1-1 | |
Expand...https://access.redhat.com/security/cve/CVE-2021-36087
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32675
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36087
https://errata.almalinux.org/8/ALSA-2021-4513.html
https://github.com/SELinuxProject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/selinux/OSV-2021-585.yaml
https://linux.oracle.com/cve/CVE-2021-36087.html
https://linux.oracle.com/errata/ELSA-2021-4513.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/
https://lore.kernel.org/selinux/CAEN2sdqJKHvDzPnxS-J8grU8fSf32DDtx=kyh84OsCq_Vm+yaQ@mail.gmail.com/T/
https://ubuntu.com/security/notices/USN-5391-1
| | libsmartcols1 | CVE-2022-0563 | LOW | 2.36.1-8+deb11u1 | |
Expand...https://access.redhat.com/security/cve/CVE-2022-0563
https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u
https://nvd.nist.gov/vuln/detail/CVE-2022-0563
https://security.netapp.com/advisory/ntap-20220331-0002/
| | libss2 | CVE-2022-1304 | HIGH | 1.46.2-2 | |
Expand...https://access.redhat.com/security/cve/CVE-2022-1304
https://bugzilla.redhat.com/show_bug.cgi?id=2069726
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1304
https://marc.info/?l=linux-ext4&m=165056234501732&w=2
https://nvd.nist.gov/vuln/detail/CVE-2022-1304
https://ubuntu.com/security/notices/USN-5464-1
| -| libssl1.1 | CVE-2022-1292 | CRITICAL | 1.1.1n-0+deb11u1 | 1.1.1n-0+deb11u2 |
Expand...https://access.redhat.com/security/cve/CVE-2022-1292
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1292
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=548d3f280a6e737673f5b61fce24bb100108dfeb
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23
https://lists.debian.org/debian-lts-announce/2022/05/msg00019.html
https://mta.openssl.org/pipermail/openssl-announce/2022-May/000224.html
https://nvd.nist.gov/vuln/detail/CVE-2022-1292
https://security.netapp.com/advisory/ntap-20220602-0009/
https://ubuntu.com/security/notices/USN-5402-1
https://ubuntu.com/security/notices/USN-5402-2
https://www.debian.org/security/2022/dsa-5139
https://www.openssl.org/news/secadv/20220503.txt
| +| libssl1.1 | CVE-2022-1292 | CRITICAL | 1.1.1n-0+deb11u1 | 1.1.1n-0+deb11u2 |
Expand...https://access.redhat.com/security/cve/CVE-2022-1292
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1292
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=548d3f280a6e737673f5b61fce24bb100108dfeb
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23
https://lists.debian.org/debian-lts-announce/2022/05/msg00019.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VX4KWHPMKYJL6ZLW4M5IU7E5UV5ZWJQU/
https://mta.openssl.org/pipermail/openssl-announce/2022-May/000224.html
https://nvd.nist.gov/vuln/detail/CVE-2022-1292
https://security.netapp.com/advisory/ntap-20220602-0009/
https://ubuntu.com/security/notices/USN-5402-1
https://ubuntu.com/security/notices/USN-5402-2
https://www.debian.org/security/2022/dsa-5139
https://www.openssl.org/news/secadv/20220503.txt
| | libssl1.1 | CVE-2022-2068 | MEDIUM | 1.1.1n-0+deb11u1 | |
Expand...https://access.redhat.com/security/cve/CVE-2022-2068
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2068
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2c9c35870601b4a44d86ddbf512b38df38285cfa
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7a9c027159fe9e1bbc2cd38a8a2914bff0d5abd9
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9639817dac8bbbaa64d09efad7464ccc405527c7
https://ubuntu.com/security/notices/USN-5488-1
https://www.openssl.org/news/secadv/20220621.txt
| | libssl1.1 | CVE-2007-6755 | LOW | 1.1.1n-0+deb11u1 | |
Expand...http://arstechnica.com/security/2013/09/stop-using-nsa-influence-code-in-our-product-rsa-tells-customers/
http://blog.cryptographyengineering.com/2013/09/rsa-warns-developers-against-its-own.html
http://blog.cryptographyengineering.com/2013/09/the-many-flaws-of-dualecdrbg.html
http://rump2007.cr.yp.to/15-shumow.pdf
http://stream.wsj.com/story/latest-headlines/SS-2-63399/SS-2-332655/
http://threatpost.com/in-wake-of-latest-crypto-revelations-everything-is-suspect
http://www.securityfocus.com/bid/63657
https://access.redhat.com/security/cve/CVE-2007-6755
https://www.schneier.com/blog/archives/2007/11/the_strange_sto.html
| | libssl1.1 | CVE-2010-0928 | LOW | 1.1.1n-0+deb11u1 | |
Expand...http://rdist.root.org/2010/03/08/attacking-rsa-exponentiation-with-fault-injection/
http://www.eecs.umich.edu/%7Evaleria/research/publications/DATE10RSA.pdf
http://www.networkworld.com/news/2010/030410-rsa-security-attack.html
http://www.osvdb.org/62808
http://www.theregister.co.uk/2010/03/04/severe_openssl_vulnerability/
https://access.redhat.com/security/cve/CVE-2010-0928
https://exchange.xforce.ibmcloud.com/vulnerabilities/56750
| @@ -126,7 +126,7 @@ hide: | ncurses-base | CVE-2021-39537 | LOW | 6.2+20201114-2 | |
Expand...http://cvsweb.netbsd.org/bsdweb.cgi/pkgsrc/devel/ncurses/patches/patch-ncurses_tinfo_captoinfo.c?rev=1.1&content-type=text/x-cvsweb-markup
https://access.redhat.com/security/cve/CVE-2021-39537
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39537
https://lists.gnu.org/archive/html/bug-ncurses/2020-08/msg00006.html
https://lists.gnu.org/archive/html/bug-ncurses/2021-10/msg00023.html
https://nvd.nist.gov/vuln/detail/CVE-2021-39537
https://ubuntu.com/security/notices/USN-5477-1
| | ncurses-bin | CVE-2022-29458 | HIGH | 6.2+20201114-2 | |
Expand...https://access.redhat.com/security/cve/CVE-2022-29458
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29458
https://invisible-island.net/ncurses/NEWS.html#t20220416
https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00014.html
https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00016.html
https://nvd.nist.gov/vuln/detail/CVE-2022-29458
https://ubuntu.com/security/notices/USN-5477-1
| | ncurses-bin | CVE-2021-39537 | LOW | 6.2+20201114-2 | |
Expand...http://cvsweb.netbsd.org/bsdweb.cgi/pkgsrc/devel/ncurses/patches/patch-ncurses_tinfo_captoinfo.c?rev=1.1&content-type=text/x-cvsweb-markup
https://access.redhat.com/security/cve/CVE-2021-39537
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39537
https://lists.gnu.org/archive/html/bug-ncurses/2020-08/msg00006.html
https://lists.gnu.org/archive/html/bug-ncurses/2021-10/msg00023.html
https://nvd.nist.gov/vuln/detail/CVE-2021-39537
https://ubuntu.com/security/notices/USN-5477-1
| -| openssl | CVE-2022-1292 | CRITICAL | 1.1.1n-0+deb11u1 | 1.1.1n-0+deb11u2 |
Expand...https://access.redhat.com/security/cve/CVE-2022-1292
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1292
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=548d3f280a6e737673f5b61fce24bb100108dfeb
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23
https://lists.debian.org/debian-lts-announce/2022/05/msg00019.html
https://mta.openssl.org/pipermail/openssl-announce/2022-May/000224.html
https://nvd.nist.gov/vuln/detail/CVE-2022-1292
https://security.netapp.com/advisory/ntap-20220602-0009/
https://ubuntu.com/security/notices/USN-5402-1
https://ubuntu.com/security/notices/USN-5402-2
https://www.debian.org/security/2022/dsa-5139
https://www.openssl.org/news/secadv/20220503.txt
| +| openssl | CVE-2022-1292 | CRITICAL | 1.1.1n-0+deb11u1 | 1.1.1n-0+deb11u2 |
Expand...https://access.redhat.com/security/cve/CVE-2022-1292
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1292
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=548d3f280a6e737673f5b61fce24bb100108dfeb
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23
https://lists.debian.org/debian-lts-announce/2022/05/msg00019.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VX4KWHPMKYJL6ZLW4M5IU7E5UV5ZWJQU/
https://mta.openssl.org/pipermail/openssl-announce/2022-May/000224.html
https://nvd.nist.gov/vuln/detail/CVE-2022-1292
https://security.netapp.com/advisory/ntap-20220602-0009/
https://ubuntu.com/security/notices/USN-5402-1
https://ubuntu.com/security/notices/USN-5402-2
https://www.debian.org/security/2022/dsa-5139
https://www.openssl.org/news/secadv/20220503.txt
| | openssl | CVE-2022-2068 | MEDIUM | 1.1.1n-0+deb11u1 | |
Expand...https://access.redhat.com/security/cve/CVE-2022-2068
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2068
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2c9c35870601b4a44d86ddbf512b38df38285cfa
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7a9c027159fe9e1bbc2cd38a8a2914bff0d5abd9
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9639817dac8bbbaa64d09efad7464ccc405527c7
https://ubuntu.com/security/notices/USN-5488-1
https://www.openssl.org/news/secadv/20220621.txt
| | openssl | CVE-2007-6755 | LOW | 1.1.1n-0+deb11u1 | |
Expand...http://arstechnica.com/security/2013/09/stop-using-nsa-influence-code-in-our-product-rsa-tells-customers/
http://blog.cryptographyengineering.com/2013/09/rsa-warns-developers-against-its-own.html
http://blog.cryptographyengineering.com/2013/09/the-many-flaws-of-dualecdrbg.html
http://rump2007.cr.yp.to/15-shumow.pdf
http://stream.wsj.com/story/latest-headlines/SS-2-63399/SS-2-332655/
http://threatpost.com/in-wake-of-latest-crypto-revelations-everything-is-suspect
http://www.securityfocus.com/bid/63657
https://access.redhat.com/security/cve/CVE-2007-6755
https://www.schneier.com/blog/archives/2007/11/the_strange_sto.html
| | openssl | CVE-2010-0928 | LOW | 1.1.1n-0+deb11u1 | |
Expand...http://rdist.root.org/2010/03/08/attacking-rsa-exponentiation-with-fault-injection/
http://www.eecs.umich.edu/%7Evaleria/research/publications/DATE10RSA.pdf
http://www.networkworld.com/news/2010/030410-rsa-security-attack.html
http://www.osvdb.org/62808
http://www.theregister.co.uk/2010/03/04/severe_openssl_vulnerability/
https://access.redhat.com/security/cve/CVE-2010-0928
https://exchange.xforce.ibmcloud.com/vulnerabilities/56750
| diff --git a/charts/dependency/redis/CHANGELOG.md b/charts/dependency/redis/CHANGELOG.md index 4209a0cb406..46fcea07239 100644 --- a/charts/dependency/redis/CHANGELOG.md +++ b/charts/dependency/redis/CHANGELOG.md @@ -1,6 +1,16 @@ # Changelog
+ +### [redis-3.0.17](https://github.com/truecharts/apps/compare/redis-3.0.16...redis-3.0.17) (2022-06-24) + +#### Chore + +* update helm chart common to v10.1.2 +* update docker general non-major ([#2954](https://github.com/truecharts/apps/issues/2954)) + + + ### [redis-3.0.16](https://github.com/truecharts/apps/compare/redis-3.0.15...redis-3.0.16) (2022-06-22) diff --git a/charts/dependency/redis/README.md b/charts/dependency/redis/README.md index 4b5898de495..39a3b074a00 100644 --- a/charts/dependency/redis/README.md +++ b/charts/dependency/redis/README.md @@ -18,7 +18,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://library-charts.truecharts.org | common | 10.1.1 | +| https://library-charts.truecharts.org | common | 10.1.2 | ## Installing the Chart diff --git a/charts/dependency/redis/security.md b/charts/dependency/redis/security.md index 0e71c32b30e..97553292f19 100644 --- a/charts/dependency/redis/security.md +++ b/charts/dependency/redis/security.md @@ -40,7 +40,7 @@ hide: ##### Detected Containers tccr.io/truecharts/alpine:v3.16.0@sha256:16dc15f3d61a1e30b1df9f839e53636847b6097286b2b74c637b25fd8264f730 - tccr.io/truecharts/redis:v7.0.2@sha256:55f0a77f91b8d51e8138d305019bdc17911d988c85b89fe901a456daa448f176 + tccr.io/truecharts/redis:v7.0.2@sha256:dcd5d5a227bfefc9306a7de6b520e0c7d4123ab1a22bd3b6b102f6dad7fbe7d5 ##### Scan Results @@ -57,7 +57,7 @@ hide: -#### Container: tccr.io/truecharts/redis:v7.0.2@sha256:55f0a77f91b8d51e8138d305019bdc17911d988c85b89fe901a456daa448f176 (debian 11.3) +#### Container: tccr.io/truecharts/redis:v7.0.2@sha256:dcd5d5a227bfefc9306a7de6b520e0c7d4123ab1a22bd3b6b102f6dad7fbe7d5 (debian 11.3) **debian**