OES Release Notes for Spinnaker Version v1.33.3
Last updated
Was this helpful?
Last updated
Was this helpful?
The images are forked out of OSS Spinnaker 1.33.3
The halyard version is forked out of except for the following two auto bump commits
The following are the releases made in OES after v1.33.3
Library updates have been implemented to address critical security vulnerabilities as provided in the table below:
Sl. No
CVE
Package
Upgraded from Version
Upgraded to Version
Services
1
CVE-2024-24790
CVE-2022-23806
CVE-2023-24538
CVE-2023-24540
KUBECTL_RELEASE
1.22.0
1.31.0
clouddriver, rosco,halyrad
2
CVE-2024-24790
AWS_CLI_S3_CMD
2.0.2
2.4.0
clouddriver
3
CVE-2024-24790
AWS_AIM_AUTHENTICATOR
0.6.14
0.6.27
clouddriver
4
CVE-2024-24790
GOOGLE_CLOUD_SDK
468.0.0
496.0.0
clouddriver
5
CVE-2024-22790
PACKER_VERSION
1.10.1
1.11.2
rosco
6
CVE-2024-22790
KUSTOMIZE_VERSION
5.0.3
5.4.3
rosco
7
CVE-2024-45490
CVE-2024-45491
CVE-2024-45492
expat
2.2.5-11.el8
2.2.5-15.el8_10
clouddriver, fiat, front50, kayenta, orca, igor, gate, echo, rosco
8
CVE-2024-37371
krb5-libs
1.18.2-28.el8_10
1.18.2-29.el8_10
clouddriver, fiat, front50, kayenta, orca, igor, gate, echo, Rosco
The Spinnaker version is upgraded from v1.30.1 to v1.33.3. For more information on Spinnaker versions, see .