Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump traefik for CVE-2025-45410 #10938

Open
brandond opened this issue Sep 24, 2024 Discussed in #10933 · 1 comment
Open

Bump traefik for CVE-2025-45410 #10938

brandond opened this issue Sep 24, 2024 Discussed in #10933 · 1 comment
Assignees
@brandond
Milestone
2024-10 Release C...

Comments

@brandond
Copy link
Member

Discussed in #10933

Originally posted by alvsanand September 23, 2024
It has been disclosed recently a critical vulnerability and k3s must ensure to use a patched version (>= 2.11.9 and 3.1.3). The vulnerability can be found here: https://nvd.nist.gov/vuln/detail/CVE-2024-45410
@brandond brandond self-assigned this Sep 24, 2024
@brandond brandond added this to the 2024-10 Release Cycle milestone Sep 24, 2024
@brandond brandond mentioned this issue Sep 24, 2024
Open
@mossroy
Copy link

mossroy commented Sep 26, 2024
edited
Loading

The title of this issue should be fixed: the CVE name is CVE-2024-45410 instead of CVE-2025-45410: we're not "back to the future" ;-)

@mossroy mossroy mentioned this issue Sep 26, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@brandond brandond

Labels
None yet
Projects
K3s Development
Status: Peer Review
Milestone
2024-10 Release Cycle
Development

No branches or pull requests
2 participants
@brandond @mossroy