New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bug 2058751: [release-4.9] 2022-02-15 Security Advisory #1406
Conversation
alicerum
commented
Mar 15, 2022
- CVE-2022-25173 CVE-2022-25176 CVE-2022-25180: pin workflow-cps to 2660.vb_c0412dc4e6d
- CVE-2022-25174 CVE-2022-25177 CVE-2022-25178 CVE-2022-25181 CVE-2022-25182 CVE-2022-25183 : pin workflow-cps-global-lib to 564.ve62a_4eb_b_e039
- CVE-2022-25175 CVE-2022-25179: pin workflow-multibranch to 711.vdfef37cda_816
- CVE-2022-25184: pin pipleine-build-step to 2.
- CVE-2022-25173 CVE-2022-25176 CVE-2022-25180: pin workflow-cps to 2660.vb_c0412dc4e6d - CVE-2022-25174 CVE-2022-25177 CVE-2022-25178 CVE-2022-25181 CVE-2022-25182 CVE-2022-25183 : pin workflow-cps-global-lib to 564.ve62a_4eb_b_e039 - CVE-2022-25175 CVE-2022-25179: pin workflow-multibranch to 711.vdfef37cda_816 - CVE-2022-25184: pin pipleine-build-step to 2.
@alicerum: This pull request references Bugzilla bug 2058752, which is invalid:
Comment In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@alicerum: This pull request references Bugzilla bug 2058751, which is invalid:
Comment In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/bugzilla-refresh |
/retitle Bug 2058751: [release-4.9] 2022-02-15 Security Advisory |
/retest |
@alicerum: all tests passed! Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
/lgtm |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: akram, alicerum The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
/bugzilla refresh |
@akram: This pull request references Bugzilla bug 2058751, which is invalid:
Comment In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/bugzilla refresh Recalculating validity in case the underlying Bugzilla bug has changed. |
@openshift-bot: This pull request references Bugzilla bug 2058751, which is invalid:
Comment In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/bugzilla refresh |
@akram: This pull request references Bugzilla bug 2058751, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker. 6 validation(s) were run on this bug
Requesting review from QA contact: In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/label backport-risk-assessed |
@jitendar-singh: Can not set label backport-risk-assessed: Must be member in one of these teams: [] In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
ART request: https://issues.redhat.com/browse/ART-3896 |
/label backport-risk-assessed |
@akram: Can not set label backport-risk-assessed: Must be member in one of these teams: [] In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/label backport-risk-assessed |
/bugzilla refresh |
@coreydaley: This pull request references Bugzilla bug 2058751, which is valid. 6 validation(s) were run on this bug
Requesting review from QA contact: In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/label cherry-pick-approved |
@alicerum: All pull requests linked via external trackers have merged: Bugzilla bug 2058751 has been moved to the MODIFIED state. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |