Request fix of CVE-2023-4911 #1451

sync-by-unito · 2024-11-19T13:31:18Z

Fix requested for 13 critical CVEs, as the result of a recent security scan. Please notify customer of the fix via support team.

┆Issue is synchronized with this Jira Vulnerability by Unito
┆Issue Number: K8OP-292

sync-by-unito · 2024-11-19T13:31:21Z

➤ Tiago Alves commented:

Erik Merkle This is specific to glibc https://nvd.nist.gov/vuln/detail/cve-2023-4911 ( https://nvd.nist.gov/vuln/detail/cve-2023-4911 ). DSE uses an older glibc version which is not affected. This seems to affect Ubuntu 22.04 (Jammy Jellyfish) which is used by k8ssandra-cass-operator_v1.17.2. Moving this to other project.

sync-by-unito · 2024-11-21T12:48:45Z

➤ Michael Burman commented:

If this is related to cass-operator 1.17.2, then I’ll close this. Why is something scanning some super old versions?

adejanovski added this to K8ssandra Nov 19, 2024

adejanovski changed the title ~~[Standard Chartered Bank] Customer request fix of CVE-2023-4911~~ Customer request fix of CVE-2023-4911 Nov 20, 2024

adejanovski changed the title ~~Customer request fix of CVE-2023-4911~~ Request fix of CVE-2023-4911 Nov 20, 2024

burmanm closed this as completed Nov 21, 2024

Provide feedback