search

kubernetes / node-problem-detector

This is a place for various problem detectors running on the Kubernetes nodes.
Apache License 2.0
3.01k stars 633 forks source link

New CVEs in 0.8.16 #871

Closed JohnRusk closed 7 months ago

JohnRusk commented 8 months ago

We're seeing these reported in the 0.8.16 image.

image

hakman commented 8 months ago

Except for CVE scanners, how does this affect NPD users?

grzesuav commented 8 months ago

On cloud providers with managed kubernetes, the npd is no longer available

hakman commented 7 months ago

NPD v0.18.8 should be released this week. Current staging image should include all the latest fixes already.

 % trivy image --severity LOW,MEDIUM,HIGH,CRITICAL --ignore-unfixed --exit-code 3 --exit-on-eol 7 --scanners vuln gcr.io/k8s-staging-npd/node-problem-detector:master              
2024-04-04T06:12:15.770+0300    INFO    Vulnerability scanning is enabled
2024-04-04T06:12:24.878+0300    INFO    Detected OS: debian
2024-04-04T06:12:24.878+0300    INFO    Detecting Debian vulnerabilities...
2024-04-04T06:12:24.889+0300    INFO    Number of language-specific files: 3
2024-04-04T06:12:24.889+0300    INFO    Detecting gobinary vulnerabilities...

gcr.io/k8s-staging-npd/node-problem-detector:master (debian 12.5)

Total: 0 (LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

/close

k8s-ci-robot commented 7 months ago

@hakman: Closing this issue.

In response to [this](https://github.com/kubernetes/node-problem-detector/issues/871#issuecomment-2036098625): >NPD v0.18.8 should be released this week. Current staging image should include all the latest fixes already. >``` > % trivy image --severity LOW,MEDIUM,HIGH,CRITICAL --ignore-unfixed --exit-code 3 --exit-on-eol 7 --scanners vuln gcr.io/k8s-staging-npd/node-problem-detector:master >2024-04-04T06:12:15.770+0300 INFO Vulnerability scanning is enabled >2024-04-04T06:12:24.878+0300 INFO Detected OS: debian >2024-04-04T06:12:24.878+0300 INFO Detecting Debian vulnerabilities... >2024-04-04T06:12:24.889+0300 INFO Number of language-specific files: 3 >2024-04-04T06:12:24.889+0300 INFO Detecting gobinary vulnerabilities... > >gcr.io/k8s-staging-npd/node-problem-detector:master (debian 12.5) > >Total: 0 (LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0) >``` > >/close Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository.
hakman commented 7 months ago

v0.8.18 has released.