ubuntu-docker-images team mailing list archive

Thread
Date

ubuntu-docker-images team
Mailing list archive
Message #00521

CVEs potentially affecting cortex and telegraf

To: ubuntu-docker-images@xxxxxxxxxxxxxxxxxxx, sergio.durigan@xxxxxxxxxxxxx, emilia.torino@xxxxxxxxxxxxx, alex.murray@xxxxxxxxxxxxx, simon.aronsson@xxxxxxxxxxxxx, dylan.stephano-shachter@xxxxxxxxxxxxx
From: security-team-toolbox-bot@xxxxxxxxxxxxx
Date: Sat, 11 Mar 2023 05:03:13 +0000 (UTC)

New CVEs affecting packages used to build upstream based rocks have been
created in the Ubuntu CVE tracker:

* https://github.com/gogo/protobuf:
* https://github.com/hashicorp/consul: CVE-2023-0845
* https://github.com/prometheus/prometheus:

Please review your rock to understand if it is affected by these CVEs.

Thank you for your rock and for attending to this matter.

References:
https://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2023-0845