Skip to content

Commit b5f72f1

Browse files
rancher-security-team[bot]rancher-security-team[bot]
committed
Update CVE scans reports - 2025-06-11
1 parent a253afd commit b5f72f1

File tree

72 files changed

+1493
-1840
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

72 files changed

+1493
-1840
lines changed

docs/csv/report-harvester-master-cves.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -51,7 +51,7 @@ rancher/hardened-calico:v3.29.3-build20250408,harvester/master,glibc,2.38-150600
5151
rancher/hardened-cni-plugins:v1.6.2-build20250306,harvester/master,glibc,2.38-150600.14.23.1,sles,SUSE-SU-2025:01702-1,HIGH,,rancher/hardened-cni-plugins:v1.6.2-build20250306 (sles 15.6),2.38-150600.14.32.1,false,affected,
5252
rancher/hardened-coredns:v1.12.1-build20250401,harvester/master,glibc,2.38-150600.14.23.1,sles,SUSE-SU-2025:01702-1,HIGH,,rancher/hardened-coredns:v1.12.1-build20250401 (sles 15.6),2.38-150600.14.32.1,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
5353
rancher/hardened-dns-node-cache:1.25.0-build20250127,harvester/master,glibc,2.38-150600.14.20.3,sles,SUSE-SU-2025:01702-1,HIGH,,rancher/hardened-dns-node-cache:1.25.0-build20250127 (sles 15.6),2.38-150600.14.32.1,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
54-
rancher/hardened-dns-node-cache:1.25.0-build20250127,harvester/master,github.com/coredns/coredns,v1.11.3,gobinary,CVE-2025-47950,HIGH,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.21.2,false,affected,
54+
rancher/hardened-dns-node-cache:1.25.0-build20250127,harvester/master,github.com/coredns/coredns,v1.11.3,gobinary,CVE-2025-47950,MEDIUM,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.12.2,false,affected,severity_changed_due_to_suse_cvss_score
5555
rancher/hardened-dns-node-cache:1.25.0-build20250127,harvester/master,golang.org/x/crypto,v0.22.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,node-cache,0.31.0,false,not_affected,vulnerable_code_not_present
5656
rancher/hardened-dns-node-cache:1.25.0-build20250127,harvester/master,golang.org/x/crypto,v0.22.0,gobinary,CVE-2025-22869,HIGH,https://avd.aquasec.com/nvd/cve-2025-22869,node-cache,0.35.0,false,not_affected,vulnerable_code_not_present
5757
rancher/hardened-flannel:v0.26.6-build20250414,harvester/master,libopenssl-3-fips-provider,3.1.4-150600.5.24.1,sles,SUSE-SU-2025:1550-1,HIGH,,rancher/hardened-flannel:v0.26.6-build20250414 (sles 15.6),3.1.4-150600.5.27.1,false,affected,

docs/csv/report-harvester-master-stats.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -23,7 +23,7 @@ rancher/hardened-calico:v3.29.3-build20250408,0,4,4
2323
rancher/hardened-cluster-autoscaler:v1.9.0-build20241203,0,0,0
2424
rancher/hardened-cni-plugins:v1.6.2-build20250306,0,1,1
2525
rancher/hardened-coredns:v1.12.1-build20250401,0,0,0
26-
rancher/hardened-dns-node-cache:1.25.0-build20250127,0,1,1
26+
rancher/hardened-dns-node-cache:1.25.0-build20250127,0,0,0
2727
rancher/hardened-etcd:v3.5.21-k3s1-build20250411,0,0,0
2828
rancher/hardened-flannel:v0.26.6-build20250414,0,6,6
2929
rancher/hardened-k8s-metrics-server:v0.7.2-build20250110,0,0,0

docs/csv/report-harvester-v1.3-head-cves.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -231,11 +231,11 @@ rancher/hardened-coredns:v1.11.3-build20241018,harvester/v1.3-head,github.com/go
231231
rancher/hardened-coredns:v1.11.3-build20241018,harvester/v1.3-head,golang.org/x/crypto,v0.22.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,coredns,0.31.0,false,not_affected,vulnerable_code_not_present
232232
rancher/hardened-coredns:v1.11.3-build20241018,harvester/v1.3-head,golang.org/x/crypto,v0.22.0,gobinary,CVE-2025-22869,HIGH,https://avd.aquasec.com/nvd/cve-2025-22869,coredns,0.35.0,false,not_affected,vulnerable_code_not_present
233233
rancher/hardened-dns-node-cache:1.23.1-build20241008,harvester/v1.3-head,glibc,2.38-150600.14.11.2,sles,SUSE-SU-2025:01702-1,HIGH,,rancher/hardened-dns-node-cache:1.23.1-build20241008 (sles 15.6),2.38-150600.14.32.1,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
234-
rancher/hardened-dns-node-cache:1.23.1-build20241008,harvester/v1.3-head,github.com/coredns/coredns,v1.10.0,gobinary,CVE-2025-47950,HIGH,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.21.2,false,affected,
235234
rancher/hardened-dns-node-cache:1.23.1-build20241008,harvester/v1.3-head,k8s.io/kubernetes,v1.26.10,gobinary,CVE-2023-5528,HIGH,https://avd.aquasec.com/nvd/cve-2023-5528,node-cache,"1.28.4, 1.27.8, 1.26.11, 1.25.16",false,affected,
236235
rancher/hardened-dns-node-cache:1.23.1-build20241008,harvester/v1.3-head,k8s.io/kubernetes,v1.26.10,gobinary,CVE-2024-0793,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-0793,node-cache,1.27.0-alpha.1,false,affected,severity_changed_due_to_suse_cvss_score
237236
rancher/hardened-dns-node-cache:1.23.1-build20241008,harvester/v1.3-head,k8s.io/kubernetes,v1.26.10,gobinary,CVE-2024-5321,HIGH,https://avd.aquasec.com/nvd/cve-2024-5321,node-cache,"1.27.16, 1.28.12, 1.29.7, 1.30.3",false,affected,
238237
rancher/hardened-dns-node-cache:1.23.1-build20241008,harvester/v1.3-head,github.com/coredns/coredns,v1.10.0,gobinary,CVE-2023-28452,HIGH,https://avd.aquasec.com/nvd/cve-2023-28452,node-cache,1.11.0,false,not_affected,vulnerable_code_not_present
238+
rancher/hardened-dns-node-cache:1.23.1-build20241008,harvester/v1.3-head,github.com/coredns/coredns,v1.10.0,gobinary,CVE-2025-47950,HIGH,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.12.2,false,not_affected,vulnerable_code_not_present
239239
rancher/hardened-dns-node-cache:1.23.1-build20241008,harvester/v1.3-head,k8s.io/kubernetes,v1.26.10,gobinary,CVE-2024-10220,HIGH,https://avd.aquasec.com/nvd/cve-2024-10220,node-cache,"1.28.12, 1.29.7, 1.30.3",false,not_affected,vulnerable_code_not_present
240240
rancher/hardened-etcd:v3.5.13-k3s1-build20240910,harvester/v1.3-head,github.com/golang-jwt/jwt/v4,v4.4.2,gobinary,CVE-2025-30204,HIGH,https://avd.aquasec.com/nvd/cve-2025-30204,usr/local/bin/etcd,4.5.2,false,not_affected,vulnerable_code_not_in_execute_path
241241
rancher/hardened-etcd:v3.5.13-k3s1-build20240910,harvester/v1.3-head,golang.org/x/crypto,v0.17.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,usr/local/bin/etcd,0.31.0,false,not_affected,vulnerable_code_not_present

docs/csv/report-harvester-v1.3-head-stats.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,7 @@ rancher/hardened-calico:v3.28.2-build20241016,0,12,12
2222
rancher/hardened-cluster-autoscaler:v1.8.11-build20241014,0,0,0
2323
rancher/hardened-cni-plugins:v1.5.1-build20241009,0,1,1
2424
rancher/hardened-coredns:v1.11.3-build20241018,0,0,0
25-
rancher/hardened-dns-node-cache:1.23.1-build20241008,0,3,3
25+
rancher/hardened-dns-node-cache:1.23.1-build20241008,0,2,2
2626
rancher/hardened-etcd:v3.5.13-k3s1-build20240910,0,0,0
2727
rancher/hardened-flannel:v0.25.7-build20241008,0,18,18
2828
rancher/hardened-k8s-metrics-server:v0.7.1-build20241008,0,0,0

docs/csv/report-harvester-v1.3.2-cves.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -339,7 +339,6 @@ rancher/hardened-coredns:v1.11.1-build20240305,harvester/v1.3.2,golang.org/x/net
339339
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,glibc,2.31-150300.63.1,sles,SUSE-SU-2024:1375-1,HIGH,,rancher/hardened-dns-node-cache:1.22.28-build20240125 (sles 15.5),2.31-150300.74.1,false,affected,
340340
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,glibc,2.31-150300.63.1,sles,SUSE-SU-2024:1895-1,HIGH,,rancher/hardened-dns-node-cache:1.22.28-build20240125 (sles 15.5),2.31-150300.83.1,false,affected,
341341
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,glibc,2.31-150300.63.1,sles,SUSE-SU-2025:01784-1,HIGH,,rancher/hardened-dns-node-cache:1.22.28-build20240125 (sles 15.5),2.31-150300.95.1,false,affected,
342-
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,github.com/coredns/coredns,v1.10.0,gobinary,CVE-2025-47950,HIGH,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.21.2,false,affected,
343342
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,k8s.io/kubernetes,v1.26.10,gobinary,CVE-2023-5528,HIGH,https://avd.aquasec.com/nvd/cve-2023-5528,node-cache,"1.28.4, 1.27.8, 1.26.11, 1.25.16",false,affected,
344343
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,k8s.io/kubernetes,v1.26.10,gobinary,CVE-2024-0793,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-0793,node-cache,1.27.0-alpha.1,false,affected,severity_changed_due_to_suse_cvss_score
345344
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,k8s.io/kubernetes,v1.26.10,gobinary,CVE-2024-5321,HIGH,https://avd.aquasec.com/nvd/cve-2024-5321,node-cache,"1.27.16, 1.28.12, 1.29.7, 1.30.3",false,affected,
@@ -349,6 +348,7 @@ rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,stdlib,v1
349348
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,stdlib,v1.20.7,gobinary,CVE-2023-45288,MEDIUM,https://avd.aquasec.com/nvd/cve-2023-45288,node-cache,"1.21.9, 1.22.2",false,affected,severity_changed_due_to_suse_cvss_score
350349
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,stdlib,v1.20.7,gobinary,CVE-2024-34156,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-34156,node-cache,"1.22.7, 1.23.1",false,affected,severity_changed_due_to_suse_cvss_score
351350
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,github.com/coredns/coredns,v1.10.0,gobinary,CVE-2023-28452,HIGH,https://avd.aquasec.com/nvd/cve-2023-28452,node-cache,1.11.0,false,not_affected,vulnerable_code_not_present
351+
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,github.com/coredns/coredns,v1.10.0,gobinary,CVE-2025-47950,HIGH,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.12.2,false,not_affected,vulnerable_code_not_present
352352
rancher/hardened-dns-node-cache:1.22.28-build20240125,harvester/v1.3.2,k8s.io/kubernetes,v1.26.10,gobinary,CVE-2024-10220,HIGH,https://avd.aquasec.com/nvd/cve-2024-10220,node-cache,"1.28.12, 1.29.7, 1.30.3",false,not_affected,vulnerable_code_not_present
353353
rancher/hardened-etcd:v3.5.13-k3s1-build20240531,harvester/v1.3.2,stdlib,v1.20.7,gobinary,CVE-2024-24790,MEDIUM,https://avd.aquasec.com/nvd/cve-2024-24790,usr/local/bin/etcd,"1.21.11, 1.22.4",false,affected,severity_changed_due_to_suse_cvss_score
354354
rancher/hardened-etcd:v3.5.13-k3s1-build20240531,harvester/v1.3.2,stdlib,v1.20.7,gobinary,CVE-2023-39325,HIGH,https://avd.aquasec.com/nvd/cve-2023-39325,usr/local/bin/etcd,"1.20.10, 1.21.3",false,affected,

docs/csv/report-harvester-v1.3.2-stats.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ rancher/gitjob:v0.9.8,0,20,20
2020
rancher/hardened-addon-resizer:1.8.20-build20240410,0,0,0
2121
rancher/hardened-cluster-autoscaler:v1.8.10-build20240124,0,1,1
2222
rancher/hardened-coredns:v1.11.1-build20240305,0,5,5
23-
rancher/hardened-dns-node-cache:1.22.28-build20240125,0,7,7
23+
rancher/hardened-dns-node-cache:1.22.28-build20240125,0,6,6
2424
rancher/hardened-etcd:v3.5.13-k3s1-build20240531,0,2,2
2525
rancher/hardened-k8s-metrics-server:v0.7.1-build20240401,0,0,0
2626
rancher/hardened-kubernetes:v1.28.12-rke2r1-build20240717,0,0,0

docs/csv/report-harvester-v1.4-head-cves.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -204,7 +204,7 @@ rancher/hardened-coredns:v1.12.0-build20241126,harvester/v1.4-head,github.com/go
204204
rancher/hardened-coredns:v1.12.0-build20241126,harvester/v1.4-head,golang.org/x/crypto,v0.29.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,coredns,0.31.0,false,not_affected,vulnerable_code_not_present
205205
rancher/hardened-coredns:v1.12.0-build20241126,harvester/v1.4-head,golang.org/x/crypto,v0.29.0,gobinary,CVE-2025-22869,HIGH,https://avd.aquasec.com/nvd/cve-2025-22869,coredns,0.35.0,false,not_affected,vulnerable_code_not_present
206206
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4-head,glibc,2.38-150600.14.17.2,sles,SUSE-SU-2025:01702-1,HIGH,,rancher/hardened-dns-node-cache:1.24.0-build20241211 (sles 15.6),2.38-150600.14.32.1,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
207-
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4-head,github.com/coredns/coredns,v1.11.3,gobinary,CVE-2025-47950,HIGH,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.21.2,false,affected,
207+
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4-head,github.com/coredns/coredns,v1.11.3,gobinary,CVE-2025-47950,MEDIUM,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.12.2,false,affected,severity_changed_due_to_suse_cvss_score
208208
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4-head,golang.org/x/crypto,v0.22.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,node-cache,0.31.0,false,not_affected,vulnerable_code_not_present
209209
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4-head,golang.org/x/crypto,v0.22.0,gobinary,CVE-2025-22869,HIGH,https://avd.aquasec.com/nvd/cve-2025-22869,node-cache,0.35.0,false,not_affected,vulnerable_code_not_present
210210
rancher/hardened-etcd:v3.5.19-k3s1-build20250306,harvester/v1.4-head,github.com/golang-jwt/jwt/v4,v4.5.1,gobinary,CVE-2025-30204,HIGH,https://avd.aquasec.com/nvd/cve-2025-30204,usr/local/bin/etcd,4.5.2,false,not_affected,vulnerable_code_not_in_execute_path

docs/csv/report-harvester-v1.4-head-stats.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@ rancher/hardened-calico:v3.29.2-build20250306,0,5,5
2626
rancher/hardened-cluster-autoscaler:v1.9.0-build20241126,0,0,0
2727
rancher/hardened-cni-plugins:v1.6.2-build20250306,0,1,1
2828
rancher/hardened-coredns:v1.12.0-build20241126,0,1,1
29-
rancher/hardened-dns-node-cache:1.24.0-build20241211,0,1,1
29+
rancher/hardened-dns-node-cache:1.24.0-build20241211,0,0,0
3030
rancher/hardened-etcd:v3.5.19-k3s1-build20250306,0,0,0
3131
rancher/hardened-flannel:v0.26.5-build20250306,0,8,8
3232
rancher/hardened-k8s-metrics-server:v0.7.2-build20250110,0,0,0

docs/csv/report-harvester-v1.4.3-cves.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -204,7 +204,7 @@ rancher/hardened-coredns:v1.12.0-build20241126,harvester/v1.4.3,github.com/golan
204204
rancher/hardened-coredns:v1.12.0-build20241126,harvester/v1.4.3,golang.org/x/crypto,v0.29.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,coredns,0.31.0,false,not_affected,vulnerable_code_not_present
205205
rancher/hardened-coredns:v1.12.0-build20241126,harvester/v1.4.3,golang.org/x/crypto,v0.29.0,gobinary,CVE-2025-22869,HIGH,https://avd.aquasec.com/nvd/cve-2025-22869,coredns,0.35.0,false,not_affected,vulnerable_code_not_present
206206
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4.3,glibc,2.38-150600.14.17.2,sles,SUSE-SU-2025:01702-1,HIGH,,rancher/hardened-dns-node-cache:1.24.0-build20241211 (sles 15.6),2.38-150600.14.32.1,false,not_affected,vulnerable_code_cannot_be_controlled_by_adversary
207-
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4.3,github.com/coredns/coredns,v1.11.3,gobinary,CVE-2025-47950,HIGH,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.21.2,false,affected,
207+
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4.3,github.com/coredns/coredns,v1.11.3,gobinary,CVE-2025-47950,MEDIUM,https://avd.aquasec.com/nvd/cve-2025-47950,node-cache,1.12.2,false,affected,severity_changed_due_to_suse_cvss_score
208208
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4.3,golang.org/x/crypto,v0.22.0,gobinary,CVE-2024-45337,CRITICAL,https://avd.aquasec.com/nvd/cve-2024-45337,node-cache,0.31.0,false,not_affected,vulnerable_code_not_present
209209
rancher/hardened-dns-node-cache:1.24.0-build20241211,harvester/v1.4.3,golang.org/x/crypto,v0.22.0,gobinary,CVE-2025-22869,HIGH,https://avd.aquasec.com/nvd/cve-2025-22869,node-cache,0.35.0,false,not_affected,vulnerable_code_not_present
210210
rancher/hardened-etcd:v3.5.19-k3s1-build20250306,harvester/v1.4.3,github.com/golang-jwt/jwt/v4,v4.5.1,gobinary,CVE-2025-30204,HIGH,https://avd.aquasec.com/nvd/cve-2025-30204,usr/local/bin/etcd,4.5.2,false,not_affected,vulnerable_code_not_in_execute_path

docs/csv/report-harvester-v1.4.3-stats.csv

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@ rancher/hardened-calico:v3.29.2-build20250306,0,5,5
2626
rancher/hardened-cluster-autoscaler:v1.9.0-build20241126,0,0,0
2727
rancher/hardened-cni-plugins:v1.6.2-build20250306,0,1,1
2828
rancher/hardened-coredns:v1.12.0-build20241126,0,1,1
29-
rancher/hardened-dns-node-cache:1.24.0-build20241211,0,1,1
29+
rancher/hardened-dns-node-cache:1.24.0-build20241211,0,0,0
3030
rancher/hardened-etcd:v3.5.19-k3s1-build20250306,0,0,0
3131
rancher/hardened-flannel:v0.26.5-build20250306,0,8,8
3232
rancher/hardened-k8s-metrics-server:v0.7.2-build20250110,0,0,0

0 commit comments

Comments
 (0)