ceph-container icon indicating copy to clipboard operation
ceph-container copied to clipboard
verified publisher icon ceph

Need fix for CVE-2022-21797

Open saranyareddy24 opened this issue 2 years ago • 2 comments

CVE reported in ceph container. Image scanned: quay.io/ceph/ceph:v17

Python (python-pkg)

Library: joblib Severity: critical Installed version: 0.16.0 Fixed version: 1.2.0

saranyareddy24 avatar Jul 20 '23 03:07 saranyareddy24

Looks like it needs to be fixed from Dockerfile, this yum repo yum copr enable -y tchaikov/python-scikit-learn is installing the 0.16.0 joblib library.

saranyareddy24 avatar Jul 24 '23 09:07 saranyareddy24

Can someone please look into this issue. Kind of critical for us.

saranyareddy24 avatar Jul 31 '23 04:07 saranyareddy24

This issue has been automatically marked as stale because it has not had recent activity. It will be closed in a week if no further activity occurs. Thank you for your contributions.

github-actions[bot] avatar Apr 10 '24 20:04 github-actions[bot]

This issue has been automatically closed due to inactivity. Please re-open if this still requires investigation.

github-actions[bot] avatar Apr 18 '24 20:04 github-actions[bot]