Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security bump to docker/distribution #8047

Merged
merged 1 commit into from Jul 31, 2023
Merged

Security bump to docker/distribution #8047

merged 1 commit into from Jul 31, 2023

Conversation

macedogm
Copy link
Member

Do a security patch bump in github.com/docker/distribution from v2.8.1 to v2.8.2 to fix CVE-2023-2253 and to silence security scanners.

Proposed Changes

Types of Changes

Verification

Testing

Linked Issues

User-Facing Change

Further Comments

@macedogm
Security bump to docker/distribution
3322f85 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
@macedogm macedogm requested a review from a team as a code owner July 26, 2023 04:03
@macedogm
Copy link
Member Author

FYI the CI failed, seems to be an unrelated test issue, but I can't restart the pipeline.

@codecov
Copy link

codecov bot commented Jul 26, 2023

Codecov Report

Patch coverage has no change and project coverage change: -0.21% ⚠️

Comparison is base (36645e7) 47.15% compared to head (3322f85) 46.95%.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #8047      +/-   ##
==========================================
- Coverage   47.15%   46.95%   -0.21%     
==========================================
  Files         143      143              
  Lines       14561    13252    -1309     
==========================================
- Hits         6866     6222     -644     
+ Misses       6605     5930     -675     
- Partials     1090     1100      +10
Flag Coverage Δ
e2etests 49.28% <ø> (?)
inttests ?
unittests 19.86% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

see 103 files with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@cwayne18 cwayne18 merged commit cc9dce5 into k3s-io:master Jul 31, 2023
11 checks passed
@macedogm macedogm deleted the security-bump branch August 1, 2023 14:21
eltociear pushed a commit to eltociear/k3s that referenced this pull request Aug 1, 2023
@macedogm @eltociear
Security bump to docker/distribution (k3s-io#8047)
fbc65a5 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
Signed-off-by: Ikko Eltociear Ashimine <eltociear@gmail.com>
brandond pushed a commit to brandond/k3s that referenced this pull request Aug 3, 2023
@macedogm @brandond
Security bump to docker/distribution (k3s-io#8047)
ef2bbe0 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
(cherry picked from commit cc9dce5)
@brandond brandond mentioned this pull request Aug 3, 2023
Merged
brandond pushed a commit to brandond/k3s that referenced this pull request Aug 3, 2023
@macedogm @brandond
Security bump to docker/distribution (k3s-io#8047)
e7403f2 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
(cherry picked from commit cc9dce5)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
brandond pushed a commit to brandond/k3s that referenced this pull request Aug 3, 2023
@macedogm @brandond
Security bump to docker/distribution (k3s-io#8047)
ea5d746 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
(cherry picked from commit cc9dce5)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
brandond pushed a commit to brandond/k3s that referenced this pull request Aug 4, 2023
@macedogm @brandond
Security bump to docker/distribution (k3s-io#8047)
7a92a97 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
(cherry picked from commit cc9dce5)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
@brandond brandond mentioned this pull request Aug 4, 2023
Merged
brandond pushed a commit to brandond/k3s that referenced this pull request Aug 4, 2023
@macedogm @brandond
Security bump to docker/distribution (k3s-io#8047)
70df90f 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
(cherry picked from commit cc9dce5)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
@brandond brandond mentioned this pull request Aug 4, 2023
Merged
brandond pushed a commit that referenced this pull request Aug 4, 2023
@macedogm @brandond
Security bump to docker/distribution (#8047)
3dc5979 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
(cherry picked from commit cc9dce5)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
brandond pushed a commit that referenced this pull request Aug 4, 2023
@macedogm @brandond
Security bump to docker/distribution (#8047)
eaef14f 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
(cherry picked from commit cc9dce5)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
brandond pushed a commit that referenced this pull request Aug 4, 2023
@macedogm @brandond
Security bump to docker/distribution (#8047)
33f2e49 
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
(cherry picked from commit cc9dce5)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
@cguertin14 cguertin14 mentioned this pull request Sep 7, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@brandond brandond brandond approved these changes

@cwayne18 cwayne18 cwayne18 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@macedogm @brandond @cwayne18