search

openshift / jenkins

Apache License 2.0
260 stars 448 forks source link

OCPTOOLS-468: mitigate CVE-2024-43044 #1834

Closed avinal closed 1 month ago

avinal commented 1 month ago

Changes

Signed-off-by: Avinal Kumar avinal@redhat.com

openshift-ci-robot commented 1 month ago

@avinal: This pull request references OCPTOOLS-468 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the bug to target the "4.13.z" version, but no target version was set.

In response to [this](https://github.com/openshift/jenkins/pull/1834): >## Changes > >- bump to Jenkins 2.462.1 to mitigate CVE-2024-43044 > >Signed-off-by: Avinal Kumar > Instructions for interacting with me using PR comments are available [here](https://prow.ci.openshift.org/command-help?repo=openshift%2Fjenkins). If you have questions or suggestions related to my behavior, please file an issue against the [openshift-eng/jira-lifecycle-plugin](https://github.com/openshift-eng/jira-lifecycle-plugin/issues/new) repository.
openshift-ci-robot commented 1 month ago

@avinal: This pull request references OCPTOOLS-468 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the bug to target the "4.13.z" version, but no target version was set.

In response to [this](https://github.com/openshift/jenkins/pull/1834): >## Changes > >- bump to Jenkins 2.462.1 to mitigate CVE-2024-43044 >- Arbitrary file read vulnerability through agent connections can lead to RCE > >Signed-off-by: Avinal Kumar > Instructions for interacting with me using PR comments are available [here](https://prow.ci.openshift.org/command-help?repo=openshift%2Fjenkins). If you have questions or suggestions related to my behavior, please file an issue against the [openshift-eng/jira-lifecycle-plugin](https://github.com/openshift-eng/jira-lifecycle-plugin/issues/new) repository.
sayan-biswas commented 1 month ago

/lgtm

openshift-ci[bot] commented 1 month ago

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: avinal, sayan-biswas

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - ~~[OWNERS](https://github.com/openshift/jenkins/blob/release-4.13/OWNERS)~~ [avinal,sayan-biswas] Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment
openshift-ci[bot] commented 1 month ago

@avinal: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/security df408af635d8fc1842ec2e7cb6110db6062ebb1c link false /test security

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes-sigs/prow](https://github.com/kubernetes-sigs/prow/issues/new?title=Prow%20issue:) repository. I understand the commands that are listed [here](https://go.k8s.io/bot-commands).
avinal commented 1 month ago

/backport-risk-assessed /cherry-pick-approved

sayan-biswas commented 1 month ago

/label backport-risk-assessed /label cherry-pick-approved

sayan-biswas commented 1 month ago

Fixes #1827.