robusta-dev
Fix CVEs in the base image
🔴 Critical Vulnerability Integer Overflow or Wraparound CWE-190: Details CVE-2023-45853: CVE Link CVSS Score: 9.8 (Critical)
🟡 Medium Vulnerabilities
-
Library:
[email protected]Introduced via:certifi,[email protected], and others Fixed in:[email protected]CWE-345: Details CVE-2024-39689: CVE Link CVSS Score: 6.1 (Medium) -
Library:
[email protected]Fixed in:[email protected]CWE-392: Details CVE-2024-12797: CVE Link CVSS Score: 6.3 (Medium) -
Library:
[email protected]Fixed in:[email protected]CWE-79: Details CVSS Score: 5.1 (Medium)
And almost 70+ Low Vulnerability detected by snyk
Hi 👋, thanks for opening an issue! Please note, it may take some time for us to respond, but we'll get back to you as soon as we can!
- 💬 Slack Community: Join Robusta team and other contributors on Slack here.
- 📖 Docs: Find our documentation here.
- 🎥 YouTube Channel: Watch our videos here.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Hi @gsr25 The critical vulnerability is irrelevant (CVE-2023-45853), you can read more here: https://github.com/madler/zlib/issues/868#issuecomment-2655313719
I will take a look on other vulnerabilities as well. Thanks.
Hi @gsr25 The critical vulnerability is irrelevant (CVE-2023-45853), you can read more here: madler/zlib#868 (comment)
I will take a look on other vulnerabilities as well. Thanks.
Thank you @moshemorad , please do let me know if you need a full snyk report