[YUNIKORN-1449] Fix CVE issues detected in golang.org/x/ modules - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.2.0
Component/s: core - common, scheduler-interface, shim - kubernetes
Labels:
- pull-request-available

Target Version:

1.2.0

Description

We identified some CVEs internally with AquaSec.

Fixing needs locking some golang.org/x/ module version with the "replace" directive in go.mod.

Attachments

Issue Links

is related to

YUNIKORN-1450 Update golang.org/x/net for CVE-2022-41717

Closed

links to

GitHub Pull Request #80

GitHub Pull Request #468

GitHub Pull Request #498

Activity

People

Assignee:: Peter Bacsko

Reporter:: Peter Bacsko

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 06/Dec/22 10:38

Updated:: 07/Feb/23 22:33

Resolved:: 06/Dec/22 15:40