Skip to content

kube-arangodb 1.2.46 - Security Vulnerabilities #1870

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
nnaik25 opened this issue Apr 17, 2025 · 1 comment
Closed

kube-arangodb 1.2.46 - Security Vulnerabilities #1870

nnaik25 opened this issue Apr 17, 2025 · 1 comment

Comments

@nnaik25
Copy link

nnaik25 commented Apr 17, 2025
edited
Loading

We are seeing below vulnerabilities reported for kube-arangodb 1.2.46

[CVE-2024-45336] [stdlib] [1.22.10]
[6.5] [CVE-2016-2781] [coreutils] [9.4-3ubuntu6]
[4.7] [CVE-2024-10041] [libpam0g] [1.5.3-5ubuntu5.1]
[5.9] [CVE-2024-2236] [libgcrypt20] [1.10.3-2build1]
[4.4] [CVE-2025-22870] [golang.org/x/net] [v0.23.0]

Tool used is aqua scan

We are using below docker image

https://hub.docker.com/r/arangodb/kube-arangodb/tags

docker pull arangodb/kube-arangodb:1.2.46

Can you please comment on whether there a plan to fix vulnerabilities on top on version 1.2.46

Let me know if any more info is required. Will update this ticket accordingly
@ajanikow
Copy link
Collaborator

Hello @nnaik25 !

Please follow it in the second created ticket: #1866 (issue is the same, as we use same base image and dependencies are only updated on the build time)

Best Regards,
Adam.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ajanikow @nnaik25