Skip to content

Commit 9853652

Browse files
CBL-Mariner-Botxordux
CBL-Mariner-Bot
and
xordux
authored
[AUTO-CHERRYPICK] Upgrade cert-manager to 1.12.15 - to fix CVE-2024-12401 - branch 3.0-dev (#12096)
Co-authored-by: Rohit Rawat <[email protected]>
1 parent 76dcc08 commit 9853652

File tree

2 files changed

+4
-84
lines changed

2 files changed

+4
-84
lines changed

SPECS/cert-manager/CVE-2024-45337.patch

Lines changed: 0 additions & 80 deletions
This file was deleted.

SPECS/cert-manager/cert-manager.spec

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -13,8 +13,7 @@ Source0: https://github.com/jetstack/%{name}/archive/refs/tags/v%{version
1313
# 1. wget https://github.com/jetstack/%%{name}/archive/refs/tags/v%%{version}.tar.gz -O %%{name}-%%{version}.tar.gz
1414
# 2. <repo-root>/SPECS/cert-manager/generate_source_tarball.sh --srcTarball %%{name}-%%{version}.tar.gz --pkgVersion %%{version}
1515
Source1: %{name}-%{version}-vendor.tar.gz
16-
Patch0: CVE-2024-45337.patch
17-
Patch1: CVE-2024-45338.patch
16+
Patch0: CVE-2024-45338.patch
1817
BuildRequires: golang
1918
Requires: %{name}-acmesolver
2019
Requires: %{name}-cainjector
@@ -105,8 +104,9 @@ install -D -m0755 bin/webhook %{buildroot}%{_bindir}/
105104
%{_bindir}/webhook
106105

107106
%changelog
108-
* Mon Jan 20 2025 CBL-Mariner Servicing Account <[email protected]> - 1.12.15-1
109-
- Auto-upgrade to 1.12.15 - none
107+
* Mon Jan 27 2025 Rohit Rawat <[email protected]> - 1.12.15-1
108+
- Upgrade to 1.12.15 - to fix CVE-2024-12401
109+
- Remove CVE-2024-45337.patch as it is fixed in 1.12.15
110110

111111
* Tue Dec 31 2024 Rohit Rawat <[email protected]> - 1.12.13-3
112112
- Add patch for CVE-2024-45338

0 commit comments

Comments
 (0)