Update 2024-12-18

rancher · Dec 18, 2024 · 5ceb22c · 5ceb22c
1 parent 2c6ea99
commit 5ceb22c
Show file tree

Hide file tree

Showing 36 changed files with 1,670 additions and 5,603 deletions.
diff --git a/docs/csv/report-harvester-master-cves.csv b/docs/csv/report-harvester-master-cves.csv
@@ -140,7 +140,6 @@ rancher/harvester-node-disk-manager-webhook:master-head,harvester/master,libglib
 rancher/harvester-node-disk-manager-webhook:master-head,harvester/master,golang.org/x/crypto,v0.27.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/node-disk-manager-webhook,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
 rancher/harvester-node-disk-manager:master-head,harvester/master,libglib-2_0-0,2.78.6-150600.4.3.1,suse linux enterprise server,SUSE-SU-2024:4254-1,HIGH,,rancher/harvester-node-disk-manager:master-head (suse linux enterprise server 15.6),2.78.6-150600.4.8.1,false,affected,
 rancher/harvester-node-disk-manager:master-head,harvester/master,golang.org/x/crypto,v0.27.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/node-disk-manager,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
-rancher/harvester-node-manager-webhook:master-head,harvester/master,golang.org/x/crypto,v0.22.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/harvester-node-manager-webhook,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
 rancher/harvester-pcidevices:v0.4.1,harvester/master,libglib-2_0-0,2.78.6-150600.4.3.1,suse linux enterprise server,SUSE-SU-2024:4254-1,HIGH,,rancher/harvester-pcidevices:v0.4.1 (suse linux enterprise server 15.6),2.78.6-150600.4.8.1,false,affected,
 rancher/harvester-pcidevices:v0.4.1,harvester/master,golang.org/x/crypto,v0.21.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,bin/pcidevices,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
 rancher/harvester-seeder:v0.4.1,harvester/master,libglib-2_0-0,2.78.6-150600.4.3.1,suse linux enterprise server,SUSE-SU-2024:4254-1,HIGH,,rancher/harvester-seeder:v0.4.1 (suse linux enterprise server 15.6),2.78.6-150600.4.8.1,false,affected,
@@ -718,10 +717,7 @@ rancher/rancher-webhook:v0.5.2,harvester/master,k8s.io/kubernetes,v1.30.1,gobina
 rancher/rancher:v2.9.2,harvester/master,libopenssl-3-fips-provider,3.1.4-150600.5.15.1,suse linux enterprise server,SUSE-SU-2024:3501-1,HIGH,,rancher/rancher:v2.9.2 (suse linux enterprise server 15.6),3.1.4-150600.5.18.1,false,affected,
 rancher/rancher:v2.9.2,harvester/master,libopenssl3,3.1.4-150600.5.15.1,suse linux enterprise server,SUSE-SU-2024:3501-1,HIGH,,rancher/rancher:v2.9.2 (suse linux enterprise server 15.6),3.1.4-150600.5.18.1,false,affected,
 rancher/rancher:v2.9.2,harvester/master,openssl-3,3.1.4-150600.5.15.1,suse linux enterprise server,SUSE-SU-2024:3501-1,HIGH,,rancher/rancher:v2.9.2 (suse linux enterprise server 15.6),3.1.4-150600.5.18.1,false,affected,
-rancher/rancher:v2.9.2,harvester/master,github.com/docker/docker,v20.10.9+incompatible,gobinary,CVE-2024-41110,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-41110,opt/drivers/management-state/bin/docker-machine-driver-harvester,"23.0.15, 26.1.5, 27.1.1, 25.0.6",false,affected,
 rancher/rancher:v2.9.2,harvester/master,github.com/docker/docker,v20.10.9+incompatible,gobinary,CVE-2023-28840,HIGH,https://avd.aquasec.com/nvd/cve-2023-28840,opt/drivers/management-state/bin/docker-machine-driver-harvester,"20.10.24, 23.0.3",false,affected,
-rancher/rancher:v2.9.2,harvester/master,github.com/rancher/norman,v0.0.0-20221205184727-32ef2e185b99,gobinary,CVE-2023-32193,HIGH,https://avd.aquasec.com/nvd/cve-2023-32193,opt/drivers/management-state/bin/docker-machine-driver-harvester,0.0.0-20240207153100-3bb70b772b52,false,affected,
-rancher/rancher:v2.9.2,harvester/master,golang.org/x/crypto,v0.14.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,opt/drivers/management-state/bin/docker-machine-driver-harvester,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
 rancher/rancher:v2.9.2,harvester/master,kubevirt.io/kubevirt,v0.54.0,gobinary,CVE-2023-26484,HIGH,https://avd.aquasec.com/nvd/cve-2023-26484,opt/drivers/management-state/bin/docker-machine-driver-harvester,,false,affected,
 rancher/rancher:v2.9.2,harvester/master,kubevirt.io/kubevirt,v0.54.0,gobinary,GHSA-qv98-3369-g364,HIGH,https://github.com/advisories/GHSA-qv98-3369-g364,opt/drivers/management-state/bin/docker-machine-driver-harvester,0.55.1,false,affected,
 rancher/rancher:v2.9.2,harvester/master,stdlib,v1.20.12,gobinary,CVE-2024-24790,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-24790,opt/drivers/management-state/bin/docker-machine-driver-harvester,"1.21.11, 1.22.4",false,affected,severity_changed_due_to_suse_cvss_score

diff --git a/docs/csv/report-harvester-master-stats.csv b/docs/csv/report-harvester-master-stats.csv
@@ -39,7 +39,7 @@ rancher/harvester-network-webhook:master-head,0,5,5
 rancher/harvester-networkfs-manager:main-head,0,4,4
 rancher/harvester-node-disk-manager-webhook:master-head,0,2,2
 rancher/harvester-node-disk-manager:master-head,0,2,2
-rancher/harvester-node-manager-webhook:master-head,0,1,1
+rancher/harvester-node-manager-webhook:master-head,0,0,0
 rancher/harvester-node-manager:master-head,0,0,0
 rancher/harvester-pcidevices:v0.4.1,0,2,2
 rancher/harvester-seeder:v0.4.1,0,1,1
@@ -75,7 +75,7 @@ rancher/mirrored-sig-storage-snapshot-controller:v6.2.1,0,18,18
 rancher/mirrored-sig-storage-snapshot-validation-webhook:v6.2.2,0,17,17
 rancher/nginx-ingress-controller:v1.10.4-hardened3,0,13,13
 rancher/rancher-webhook:v0.5.2,0,1,1
-rancher/rancher:v2.9.2,5,22,27
+rancher/rancher:v2.9.2,4,20,24
 rancher/rke2-cloud-provider:v1.29.8-build20240910,0,1,1
 rancher/rke2-runtime:v1.29.9-rke2r1,1,0,1
 rancher/shell:v0.1.24,2,17,19

diff --git a/docs/csv/report-harvester-v1.3-head-cves.csv b/docs/csv/report-harvester-v1.3-head-cves.csv
@@ -364,7 +364,6 @@ rancher/harvester-node-manager-webhook:v0.2.1,harvester/v1.3-head,libxml2-2,2.10
 rancher/harvester-node-manager-webhook:v0.2.1,harvester/v1.3-head,openssl-1_1,1.1.1l-150500.17.22.1,suse linux enterprise server,SUSE-SU-2024:2051-1,HIGH,,rancher/harvester-node-manager-webhook:v0.2.1 (suse linux enterprise server 15.5),1.1.1l-150500.17.31.1,false,affected,
 rancher/harvester-node-manager-webhook:v0.2.1,harvester/v1.3-head,perl-base,5.26.1-150300.17.14.1,suse linux enterprise server,SUSE-SU-2024:1762-1,HIGH,,rancher/harvester-node-manager-webhook:v0.2.1 (suse linux enterprise server 15.5),5.26.1-150300.17.17.1,false,affected,
 rancher/harvester-node-manager-webhook:v0.2.1,harvester/v1.3-head,util-linux,2.37.4-150500.9.3.1,suse linux enterprise server,SUSE-SU-2024:1172-1,HIGH,,rancher/harvester-node-manager-webhook:v0.2.1 (suse linux enterprise server 15.5),2.37.4-150500.9.6.1,false,affected,
-rancher/harvester-node-manager-webhook:v0.2.1,harvester/v1.3-head,golang.org/x/crypto,v0.18.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/bin/harvester-node-manager-webhook,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
 rancher/harvester-node-manager-webhook:v0.2.1,harvester/v1.3-head,stdlib,v1.20.13,gobinary,CVE-2024-24790,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-24790,usr/bin/harvester-node-manager-webhook,"1.21.11, 1.22.4",false,affected,severity_changed_due_to_suse_cvss_score
 rancher/harvester-node-manager-webhook:v0.2.1,harvester/v1.3-head,stdlib,v1.20.13,gobinary,CVE-2023-45288,HIGH,https://avd.aquasec.com/nvd/cve-2023-45288,usr/bin/harvester-node-manager-webhook,"1.21.9, 1.22.2",false,affected,
 rancher/harvester-node-manager-webhook:v0.2.1,harvester/v1.3-head,stdlib,v1.20.13,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,usr/bin/harvester-node-manager-webhook,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
@@ -1199,10 +1198,7 @@ rancher/rancher:v2.8.5,harvester/v1.3-head,libopenssl1_1,1.1.1l-150500.17.28.2,s
 rancher/rancher:v2.8.5,harvester/v1.3-head,libopenssl1_1-hmac,1.1.1l-150500.17.28.2,suse linux enterprise server,SUSE-SU-2024:2051-1,HIGH,,rancher/rancher:v2.8.5 (suse linux enterprise server 15.5),1.1.1l-150500.17.31.1,false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,libprotobuf-lite25_1_0,25.1-150400.9.6.1,suse linux enterprise server,SUSE-SU-2024:3747-1,HIGH,,rancher/rancher:v2.8.5 (suse linux enterprise server 15.5),25.1-150500.12.5.1,false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,openssl-1_1,1.1.1l-150500.17.28.2,suse linux enterprise server,SUSE-SU-2024:2051-1,HIGH,,rancher/rancher:v2.8.5 (suse linux enterprise server 15.5),1.1.1l-150500.17.31.1,false,affected,
-rancher/rancher:v2.8.5,harvester/v1.3-head,github.com/docker/docker,v20.10.9+incompatible,gobinary,CVE-2024-41110,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-41110,opt/drivers/management-state/bin/docker-machine-driver-harvester,"23.0.15, 26.1.5, 27.1.1, 25.0.6",false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,github.com/docker/docker,v20.10.9+incompatible,gobinary,CVE-2023-28840,HIGH,https://avd.aquasec.com/nvd/cve-2023-28840,opt/drivers/management-state/bin/docker-machine-driver-harvester,"20.10.24, 23.0.3",false,affected,
-rancher/rancher:v2.8.5,harvester/v1.3-head,github.com/rancher/norman,v0.0.0-20221205184727-32ef2e185b99,gobinary,CVE-2023-32193,HIGH,https://avd.aquasec.com/nvd/cve-2023-32193,opt/drivers/management-state/bin/docker-machine-driver-harvester,0.0.0-20240207153100-3bb70b772b52,false,affected,
-rancher/rancher:v2.8.5,harvester/v1.3-head,golang.org/x/crypto,v0.14.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,opt/drivers/management-state/bin/docker-machine-driver-harvester,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
 rancher/rancher:v2.8.5,harvester/v1.3-head,kubevirt.io/kubevirt,v0.54.0,gobinary,CVE-2023-26484,HIGH,https://avd.aquasec.com/nvd/cve-2023-26484,opt/drivers/management-state/bin/docker-machine-driver-harvester,,false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,kubevirt.io/kubevirt,v0.54.0,gobinary,GHSA-qv98-3369-g364,HIGH,https://github.com/advisories/GHSA-qv98-3369-g364,opt/drivers/management-state/bin/docker-machine-driver-harvester,0.55.1,false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,stdlib,v1.20.12,gobinary,CVE-2024-24790,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-24790,opt/drivers/management-state/bin/docker-machine-driver-harvester,"1.21.11, 1.22.4",false,affected,severity_changed_due_to_suse_cvss_score
@@ -1336,10 +1332,7 @@ rancher/rancher:v2.8.5,harvester/v1.3-head,stdlib,v1.21.3,gobinary,CVE-2024-2479
 rancher/rancher:v2.8.5,harvester/v1.3-head,stdlib,v1.21.3,gobinary,CVE-2023-45283,MEDIUM,https://avd.aquasec.com/nvd/cve-2023-45283,usr/bin/telemetry,"1.20.11, 1.21.4, 1.20.12, 1.21.5",false,affected,severity_changed_due_to_suse_cvss_score
 rancher/rancher:v2.8.5,harvester/v1.3-head,stdlib,v1.21.3,gobinary,CVE-2023-45288,HIGH,https://avd.aquasec.com/nvd/cve-2023-45288,usr/bin/telemetry,"1.21.9, 1.22.2",false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,stdlib,v1.21.3,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,usr/bin/telemetry,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
-rancher/rancher:v2.8.5,harvester/v1.3-head,github.com/docker/docker,v20.10.9+incompatible,gobinary,CVE-2024-41110,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-41110,usr/share/rancher/ui/assets/docker-machine-driver-harvester,"23.0.15, 26.1.5, 27.1.1, 25.0.6",false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,github.com/docker/docker,v20.10.9+incompatible,gobinary,CVE-2023-28840,HIGH,https://avd.aquasec.com/nvd/cve-2023-28840,usr/share/rancher/ui/assets/docker-machine-driver-harvester,"20.10.24, 23.0.3",false,affected,
-rancher/rancher:v2.8.5,harvester/v1.3-head,github.com/rancher/norman,v0.0.0-20221205184727-32ef2e185b99,gobinary,CVE-2023-32193,HIGH,https://avd.aquasec.com/nvd/cve-2023-32193,usr/share/rancher/ui/assets/docker-machine-driver-harvester,0.0.0-20240207153100-3bb70b772b52,false,affected,
-rancher/rancher:v2.8.5,harvester/v1.3-head,golang.org/x/crypto,v0.14.0,gobinary,CVE-2024-45337,HIGH,https://avd.aquasec.com/nvd/cve-2024-45337,usr/share/rancher/ui/assets/docker-machine-driver-harvester,0.31.0,false,affected,severity_changed_due_to_suse_cvss_score
 rancher/rancher:v2.8.5,harvester/v1.3-head,kubevirt.io/kubevirt,v0.54.0,gobinary,CVE-2023-26484,HIGH,https://avd.aquasec.com/nvd/cve-2023-26484,usr/share/rancher/ui/assets/docker-machine-driver-harvester,,false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,kubevirt.io/kubevirt,v0.54.0,gobinary,GHSA-qv98-3369-g364,HIGH,https://github.com/advisories/GHSA-qv98-3369-g364,usr/share/rancher/ui/assets/docker-machine-driver-harvester,0.55.1,false,affected,
 rancher/rancher:v2.8.5,harvester/v1.3-head,stdlib,v1.20.12,gobinary,CVE-2024-24790,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-24790,usr/share/rancher/ui/assets/docker-machine-driver-harvester,"1.21.11, 1.22.4",false,affected,severity_changed_due_to_suse_cvss_score

diff --git a/docs/csv/report-harvester-v1.3-head-stats.csv b/docs/csv/report-harvester-v1.3-head-stats.csv
@@ -33,7 +33,7 @@ rancher/harvester-network-controller:v0.4.1,0,11,11
 rancher/harvester-network-helper:v0.4.1,0,9,9
 rancher/harvester-network-webhook:v0.4.1,0,9,9
 rancher/harvester-node-disk-manager:v0.6.4,0,3,3
-rancher/harvester-node-manager-webhook:v0.2.1,0,19,19
+rancher/harvester-node-manager-webhook:v0.2.1,0,18,18
 rancher/harvester-node-manager:v0.2.1,0,18,18
 rancher/harvester-pcidevices:v0.3.3,0,2,2
 rancher/harvester-seeder:v0.3.2,0,2,2
@@ -66,7 +66,7 @@ rancher/mirrored-prometheus-prometheus:v2.42.0,2,35,37
 rancher/mirrored-sig-storage-snapshot-controller:v6.2.1,0,18,18
 rancher/mirrored-sig-storage-snapshot-validation-webhook:v6.2.2,0,17,17
 rancher/rancher-webhook:v0.4.7,0,2,2
-rancher/rancher:v2.8.5,7,112,119
+rancher/rancher:v2.8.5,5,108,113
 rancher/rke2-cloud-provider:v1.29.3-build20240515,0,1,1
 rancher/rke2-runtime:v1.28.12-rke2r1,2,20,22
 rancher/shell:v0.1.26,1,10,11