Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVE-2023-44487 - qpext #3203

Merged
merged 1 commit into from
Nov 5, 2023
Merged

CVE-2023-44487 - qpext #3203

merged 1 commit into from
Nov 5, 2023

Conversation

spolti
Copy link
Contributor

@spolti spolti commented Oct 26, 2023
edited by yuzisun

What this PR does / why we need it:

Which issue(s) this PR fixes (optional, in fixes #<issue number>(, fixes #<issue_number>, ...) format, will close the issue(s) when PR gets merged):
Fixes #

Type of changes
Please delete options that are not relevant.

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • This change requires a documentation update

Feature/Issue validation/testing:

Please describe the tests that you ran to verify your changes and relevant result summary. Provide instructions so it can be reproduced.
Please also list any relevant details for your test configuration.

  • Test A

  • Test B

  • Logs

Special notes for your reviewer:

  1. Please confirm that if this PR changes any image versions, then that's the sole change this PR makes.

Checklist:

  • Have you added unit/e2e tests that prove your fix is effective or that this feature works?
  • Has code been commented, particularly in hard-to-understand areas?
  • Have you made corresponding changes to the documentation?

Release note:

@spolti
[RHODS-12555] - CVE-2023-44487 - qpext
e35e39a 
Signed-off-by: Spolti <fspolti@redhat.com>
@spolti spolti changed the title [RHODS-12555] - CVE-2023-44487 - qpext CVE-2023-44487 - qpext Oct 31, 2023
@yuzisun
Copy link
Member

yuzisun commented Nov 5, 2023

/lgtm
/approve

@kserve-oss-bot
Copy link
Collaborator

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: spolti, yuzisun

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@kserve-oss-bot kserve-oss-bot merged commit 3498a01 into kserve:master Nov 5, 2023
60 checks passed
@spolti spolti deleted the CVE-2023-44487-qpext branch November 6, 2023 15:40
israel-hdez pushed a commit to israel-hdez/kserve that referenced this pull request Nov 11, 2023
@spolti @israel-hdez
CVE-2023-44487 - qpext (kserve#3203)
f8e0193 
[RHODS-12555] - CVE-2023-44487 - qpext

Signed-off-by: Spolti <fspolti@redhat.com>
@israel-hdez israel-hdez mentioned this pull request Nov 11, 2023
Merged
kserve-oss-bot pushed a commit that referenced this pull request Nov 11, 2023
@israel-hdez @spolti
[release-0.11] Cherry-picks related to CVE-2023-44487 (#3242)
c949745 
* CVE-2023-44487

core: Core dependencies update: x/net and grpc

Signed-off-by: Spolti <fspolti@redhat.com>

* CVE-2023-44487 - qpext (#3203)

[RHODS-12555] - CVE-2023-44487 - qpext

Signed-off-by: Spolti <fspolti@redhat.com>

---------

Signed-off-by: Spolti <fspolti@redhat.com>
Co-authored-by: Spolti <fspolti@redhat.com>
Co-authored-by: Filippe Spolti <filippespolti@gmail.com>
@spolti spolti mentioned this pull request Jan 10, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@adriangonz adriangonz Awaiting requested review from adriangonz

@yuzisun yuzisun Awaiting requested review from yuzisun

Assignees

@yuzisun yuzisun

Labels
approved lgtm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@spolti @yuzisun @kserve-oss-bot