upgrade helm to 3.13.2 #4128

cbodonnell · 2023-11-09T20:08:02Z

What this PR does / why we need it:

This PR upgrades the Helm binary in the kotsadm image to 3.13.2 to resolve some CVEs. It also bumps a few go.mod packages to resolve some other CVEs.

Which issue(s) this PR fixes:

Fixes #

Special notes for your reviewer:

Steps to reproduce

Does this PR introduce a user-facing change?

* Upgrades the Helm binary in the kotsadm image to 3.13.2 to resolve CVE-2023-39325 and GHSA-m425-mq94-257g with high severity and CVE-2023-44487 and GHSA-jq35-85cj-fj4p with medium severity
* Upgrades the google.golang.org/grpc go module to v1.59.0 to resolve GHSA-m425-mq94-257g with high severity and  CVE-2023-44487 with medium severity
* Upgrades the github.com/docker/docker go module to v24.0.7 to resolve GHSA-jq35-85cj-fj4p with medium severity

Does this PR require documentation?

Craig O'Donnell added 2 commits November 9, 2023 20:05

upgrade helm to 3.13.2

3716296

go mod upgrades for cves

f1e38d7

cbodonnell added the type::security label Nov 9, 2023

cbodonnell requested a review from sgalsaleh November 9, 2023 20:13

sgalsaleh approved these changes Nov 9, 2023

View reviewed changes

cbodonnell merged commit 32fbc64 into main Nov 9, 2023
163 checks passed

cbodonnell deleted the cbo/resolve-cves branch November 9, 2023 21:19

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

upgrade helm to 3.13.2 #4128

upgrade helm to 3.13.2 #4128

cbodonnell commented Nov 9, 2023 •

edited

Loading

upgrade helm to 3.13.2 #4128

upgrade helm to 3.13.2 #4128

Conversation

cbodonnell commented Nov 9, 2023 • edited Loading

What this PR does / why we need it:

Which issue(s) this PR fixes:

Special notes for your reviewer:

Steps to reproduce

Does this PR introduce a user-facing change?

Does this PR require documentation?

cbodonnell commented Nov 9, 2023 •

edited

Loading