Skip to content

scout: add release note about CVE-2024-3094 #19728

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 2, 2024
Merged

scout: add release note about CVE-2024-3094 #19728

merged 1 commit into from
Apr 2, 2024

Conversation

@dvdksn
Copy link
Contributor

@dvdksn dvdksn commented Apr 2, 2024

Description

Adds the xz/liblzma backdoor vulnerability (CVE-2024-3094) to the High-profile vulnerabilities policy.

@github-actions github-actions bot added the area/scout Relates to Docker Scout label Apr 2, 2024
@netlify
Copy link

netlify bot commented Apr 2, 2024
edited
Loading

Deploy Preview for docsdocker ready!

Name Link
🔨 Latest commit 4f3de2e
🔍 Latest deploy log https://app.netlify.com/sites/docsdocker/deploys/660bfe346e4b7a000865a89b
😎 Deploy Preview https://deploy-preview-19728--docsdocker.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@dvdksn dvdksn force-pushed the scout-highprofile-cve-2024-3094 branch from 6a73974 to feedb56 Compare April 2, 2024 09:55
chrispatrick
chrispatrick approved these changes Apr 2, 2024
View reviewed changes
Copy link
Contributor

@chrispatrick chrispatrick left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@dvdksn dvdksn requested a review from a team April 2, 2024 11:23
tazin-docker
tazin-docker reviewed Apr 2, 2024
View reviewed changes
tazin-docker
tazin-docker reviewed Apr 2, 2024
View reviewed changes
Copy link

@tazin-docker tazin-docker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added a comment in-line

@dvdksn dvdksn force-pushed the scout-highprofile-cve-2024-3094 branch from feedb56 to 50dc0db Compare April 2, 2024 12:10
@dvdksn
scout: add CVE-2024-3094 to high-profile vulns
4f3de2e 
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
@dvdksn dvdksn force-pushed the scout-highprofile-cve-2024-3094 branch from 50dc0db to 4f3de2e Compare April 2, 2024 12:46
@dvdksn dvdksn merged commit 64795d8 into docker:main Apr 2, 2024
@dvdksn dvdksn deleted the scout-highprofile-cve-2024-3094 branch April 2, 2024 20:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@craig-osterhout craig-osterhout craig-osterhout approved these changes

@cdupuis cdupuis Awaiting requested review from cdupuis

+2 more reviewers

@tazin-docker tazin-docker tazin-docker left review comments

@chrispatrick chrispatrick chrispatrick approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

area/scout Relates to Docker Scout status/review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@dvdksn @chrispatrick @craig-osterhout @tazin-docker