1
0
mirror of https://github.com/ceph/ceph-csi.git synced 2024-12-27 23:40:22 +00:00
ceph-csi/vendor/k8s.io/apiserver/pkg/admission/configuration
Humble Chirammal 78211b694b build: update client-go and other kube dependencies to 1.20.6
client-go 1.20.6 has a fix for below CVE: This patch address this
via updating client-go and other dependencies.

CVE-2019-11250 : The MITRE CVE dictionary describes this issue as:

The Kubernetes client-go library logs request headers at verbosity
levels of 7 or higher. This can disclose credentials to unauthorized
users via logs or command output. Kubernetes components (such as
kube-apiserver) prior to v1.16.0, which make use of basic or bearer
token authentication, and run at high verbosity levels, are affected.

Ref# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11250

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
2021-05-26 09:14:10 +00:00
..
configuration_manager.go Update to kube v1.17 2020-01-17 12:06:02 +00:00
mutating_webhook_manager.go build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00
validating_webhook_manager.go build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00