1
0
mirror of https://github.com/ceph/ceph-csi.git synced 2024-12-22 04:50:23 +00:00
ceph-csi/vendor/k8s.io/apiserver/pkg
Humble Chirammal 78211b694b build: update client-go and other kube dependencies to 1.20.6
client-go 1.20.6 has a fix for below CVE: This patch address this
via updating client-go and other dependencies.

CVE-2019-11250 : The MITRE CVE dictionary describes this issue as:

The Kubernetes client-go library logs request headers at verbosity
levels of 7 or higher. This can disclose credentials to unauthorized
users via logs or command output. Kubernetes components (such as
kube-apiserver) prior to v1.16.0, which make use of basic or bearer
token authentication, and run at high verbosity levels, are affected.

Ref# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11250

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
2021-05-26 09:14:10 +00:00
..
admission build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00
apis build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00
audit rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
authentication rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
authorization/authorizer Update to kube v1.17 2020-01-17 12:06:02 +00:00
endpoints/request rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
features rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
quota/v1 build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00
server/egressselector rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
util rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
warning rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00