Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

v0.11/vendor: bump cilium to v1.13.1 #975

Merged
merged 1 commit into from Apr 3, 2023
Merged

v0.11/vendor: bump cilium to v1.13.1 #975

merged 1 commit into from Apr 3, 2023

Conversation

rolinh
Copy link
Member

@rolinh rolinh commented Apr 3, 2023

Although Hubble CLI is unaffected here, bumping Cilium to v1.13.1 should help stop some security scanner from complaining about the following 3 vulnerabilities that affect Cilium v1.13.0:

Potential network policy bypass when routing IPv6 traffic: GHSA-8fg8-jh2h-f2hc

Cilium eBPF filters may be temporarily removed during agent restart: GHSA-r5x6-w42p-jhpp.

cilium-agent container can access the host via hostPath mount: GHSA-4hc4-pgfx-3mrx

@rolinh
vendor: bump cilium to v1.13.1
d9d8082 
Although Hubble CLI is unaffected here, bumping Cilium to v1.13.1 should
help stop some security scanner from complaining about the following
3 vulnerabilities that affect Cilium v1.13.0:

Potential network policy bypass when routing IPv6 traffic:
GHSA-8fg8-jh2h-f2hc

Cilium eBPF filters may be temporarily removed during agent restart:
GHSA-r5x6-w42p-jhpp.

cilium-agent container can access the host via `hostPath` mount:
GHSA-4hc4-pgfx-3mrx

Signed-off-by: Robin Hahling <robin.hahling@gw-computing.net>
@rolinh rolinh added the release-note/misc This PR makes changes that have no direct user impact. label Apr 3, 2023
@rolinh rolinh requested a review from a team as a code owner April 3, 2023 11:29
@rolinh rolinh requested review from sayboras and removed request for a team April 3, 2023 11:29
sayboras
sayboras approved these changes Apr 3, 2023
View reviewed changes
Copy link
Member

@sayboras sayboras left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚢

@maintainer-s-little-helper maintainer-s-little-helper bot added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Apr 3, 2023
@rolinh rolinh changed the title vendor: bump cilium to v1.13.1 v0.11/vendor: bump cilium to v1.13.1 Apr 3, 2023
@rolinh rolinh merged commit 3d2bf69 into v0.11 Apr 3, 2023
2 checks passed
@rolinh rolinh deleted the pr/rolinh/v0.11-cilium-v1.13.1 branch April 3, 2023 11:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sayboras sayboras sayboras approved these changes

Assignees
No one assigned
Labels
ready-to-merge This PR has passed all tests and received consensus from code owners to merge. release-note/misc This PR makes changes that have no direct user impact.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@rolinh @sayboras