9 matches found
CBL Mariner 2.0 Security Update: telegraf (CVE-2024-28110)
The version of telegraf installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28110 advisory. - Go SDK for CloudEvents is the official CloudEvents SDK to integrate applications with CloudEvents. Prior t...
CVE-2024-28110 affecting package telegraf for versions less than 1.31.0-1
CVE-2024-28110 affecting package telegraf for versions less than 1.31.0-1. An upgraded version of the package is available that resolves this issue...
Critical: Red Hat Security Advisory: OpenShift Container Platform 4.16.0 security and extras update
Red Hat OpenShift Container Platform release 4.16.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.16. Red Hat Product Security has rated this update as having a...
Moderate: Red Hat Security Advisory: Release of OpenShift Serverless 1.32.0
Red Hat OpenShift Serverless version 1.32.0 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE lin...
CVE-2024-28110 vulnerabilities
Vulnerabilities for packages: falcosidekick, guac, falcosidekick-fips, keda-fips...
AZL-35751 CVE-2024-28110 affecting package telegraf for versions less than 1.31.0-1
Go SDK for CloudEvents is the official CloudEvents SDK to integrate applications with CloudEvents. Prior to version 2.15.2, using cloudevents.WithRoundTripper to create a cloudevents.Client with an authenticated http.RoundTripper causes the go-sdk to leak credentials to arbitrary endpoints. When...
CVE-2024-28110 vulnerabilities
Vulnerabilities for packages: guac, falcosidekick...
CVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials
Go SDK for CloudEvents is the official CloudEvents SDK to integrate applications with CloudEvents. Prior to version 2.15.2, using cloudevents.WithRoundTripper to create a cloudevents.Client with an authenticated http.RoundTripper causes the go-sdk to leak credentials to arbitrary endpoints. When...
CVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials
Go SDK for CloudEvents is the official CloudEvents SDK to integrate applications with CloudEvents. Prior to version 2.15.2, using cloudevents.WithRoundTripper to create a cloudevents.Client with an authenticated http.RoundTripper causes the go-sdk to leak credentials to arbitrary endpoints. When...