mirrors/ceph-csi
1
0
Fork 0
mirror of https://github.com/ceph/ceph-csi.git synced 2024-09-19 15:09:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
78211b694b
ceph-csi/vendor/sigs.k8s.io
History
Humble Chirammal 78211b694b build: update client-go and other kube dependencies to 1.20.6 
client-go 1.20.6 has a fix for below CVE: This patch address this
via updating client-go and other dependencies.

CVE-2019-11250 : The MITRE CVE dictionary describes this issue as:

The Kubernetes client-go library logs request headers at verbosity
levels of 7 or higher. This can disclose credentials to unauthorized
users via logs or command output. Kubernetes components (such as
kube-apiserver) prior to v1.16.0, which make use of basic or bearer
token authentication, and run at high verbosity levels, are affected.

Ref# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11250

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
2021-05-26 09:14:10 +00:00
..
apiserver-network-proxy/konnectivity-client build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00
controller-runtime rebase: add controller runtime dependency 2020-11-28 18:50:00 +00:00
structured-merge-diff/v4 build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00
yaml Changes to accommodate client-go changes and kube vendor update 2020-04-14 10:50:12 +00:00