CVE-2024-10220 was announced here: https://www.openwall.com/lists/oss-security/2024/11/20/1 The problem is fixed in versions 1.28.12, 1.29.7, 1.30.3 and 1.31.0. Mageia 9 is also affected.
Whiteboard: (none) => MGA9TOOCVE: CVE-2024-3177, CVE-2024-10220 => CVE-2024-10220Keywords: advisory => (none)
Assignee: bugsquad => bruno
Packages ready to be pushed to updates_testing once golang is updated: RPMS/x86_64/kubernetes-1.27.16-1.mga9.x86_64.rpm RPMS/x86_64/kubernetes-client-1.27.16-1.mga9.x86_64.rpm RPMS/x86_64/kubernetes-kubeadm-1.27.16-1.mga9.x86_64.rpm RPMS/x86_64/kubernetes-master-1.27.16-1.mga9.x86_64.rpm RPMS/x86_64/kubernetes-node-1.27.16-1.mga9.x86_64.rpm SRPMS/kubernetes-1.27.16-1.mga9.src.rpm Also fixes https://bugs.mageia.org/show_bug.cgi?id=33143
Status: NEW => ASSIGNED
FTR used this patch: https://patch-diff.githubusercontent.com/raw/kubernetes/kubernetes/pull/124531.patch
Packages pushed to updates_testing now golang has been updated: RPMS/x86_64/kubernetes-1.27.16-1.mga9.x86_64.rpm RPMS/x86_64/kubernetes-client-1.27.16-1.mga9.x86_64.rpm RPMS/x86_64/kubernetes-kubeadm-1.27.16-1.mga9.x86_64.rpm RPMS/x86_64/kubernetes-master-1.27.16-1.mga9.x86_64.rpm RPMS/x86_64/kubernetes-node-1.27.16-1.mga9.x86_64.rpm SRPMS/kubernetes-1.27.16-1.mga9.src.rpm Also fixes https://bugs.mageia.org/show_bug.cgi?id=33143
Assignee: bruno => qa-bugs
Only one of the bugs should be assigned to QA.
Assignee: qa-bugs => bruno
Fixed in bug 33143
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED