Skip to content

strimzi-kafka-operator/0.49.1-r1: cve remediation #76677

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
AmberArcadia merged 2 commits into from
Dec 29, 2025
Merged

strimzi-kafka-operator/0.49.1-r1: cve remediation #76677

AmberArcadia merged 2 commits into from
Dec 29, 2025

Conversation

@octo-sts
Copy link
Contributor

@octo-sts octo-sts bot commented Dec 22, 2025

strimzi-kafka-operator/0.49.1-r1: fix GHSA-vc5p-v9hr-52mj

Advisory data: https://github.com/wolfi-dev/advisories/blob/main/strimzi-kafka-operator.advisories.yaml

"Breadcrumbs" for this automated service

Inspected git repositories: https://github.com/strimzi/strimzi-kafka-operator@0.49.1

@octo-sts octo-sts bot added automated pr request-cve-remediation maven/pombump p:strimzi-kafka-operator GHSA-vc5p-v9hr-52mj P1 This label indicates our scanning found High, Medium or Low CVEs for these packages. cve-pr-closer/v2-adv-disagreement bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. manual/review-needed staging-approver-bot/manual-review-needed approver-bot/manual-review-needed labels Dec 22, 2025
@brianmcarey brianmcarey self-assigned this Dec 29, 2025
@brianmcarey
strimzi-kafka-operator: Add log4j bump to thirdparty packages
e63921c 
log4j is also present in these thirdparty-libs packages and causes the
CVE scan to fail

https://github.com/wolfi-dev/os/pull/76677/checks?check_run_id=58752506198

Include the bump of log4j to v2.25.3 in these as well.

Signed-off-by: Brian Carey <brian.carey@chainguard.dev>
@brianmcarey brianmcarey force-pushed the cve-strimzi-kafka-operator-0.49.1-r1-b0b619081ebc6563c3dfbeaf7dd088c4 branch from 7bc28c7 to e63921c Compare December 29, 2025 15:11
@brianmcarey brianmcarey requested a review from a team December 29, 2025 15:34
@AmberArcadia AmberArcadia merged commit f030e81 into main Dec 29, 2025
26 checks passed
@AmberArcadia AmberArcadia deleted the cve-strimzi-kafka-operator-0.49.1-r1-b0b619081ebc6563c3dfbeaf7dd088c4 branch December 29, 2025 17:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AmberArcadia AmberArcadia AmberArcadia approved these changes

Assignees

@brianmcarey brianmcarey

Labels

approver-bot/manual-review-needed automated pr bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. cve-pr-closer/v2-adv-disagreement GHSA-vc5p-v9hr-52mj manual/review-needed maven/pombump p:strimzi-kafka-operator P1 This label indicates our scanning found High, Medium or Low CVEs for these packages. request-cve-remediation staging-approver-bot/manual-review-needed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@AmberArcadia @brianmcarey