Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Zipkin to address vulnerable version of the Spring Framework CVE-2022-22965 #201

Closed
fp-dshim opened this issue Jul 19, 2022 · 1 comment
Closed

Update Zipkin to address vulnerable version of the Spring Framework CVE-2022-22965 #201

fp-dshim opened this issue Jul 19, 2022 · 1 comment
Labels
enhancement

Comments

@fp-dshim
Copy link

fp-dshim commented Jul 19, 2022
edited
Loading

Please Upgrade Docker Image to pull newest version of Zipkin that contains the patch for CVE-2022-22965

Zipkin has a merged a fix for the issue here: openzipkin/zipkin#3462

This release appears to contain the fix: https://github.com/openzipkin/zipkin/releases/tag/2.23.18
The GCP docker image should be updated to this version once released, if it's not already available.

Feature

Fixes CVE-2022-22965
This provides a more secure docker image of Zipkin-gcp
@shakuzen
Copy link
Member

shakuzen commented Sep 1, 2023

Zipkin version upgraded with #202

@shakuzen shakuzen closed this as completed Sep 1, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@shakuzen @fp-dshim