Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 #2277

Merged
merged 1 commit into from
Oct 11, 2024
Merged

Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 #2277

merged 1 commit into from
Oct 11, 2024

Conversation

brfrn169
Copy link
Collaborator

Description

This PR fixes CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 by bumping up the gRPC library, the Protocol Buffers library, grpc_health_probe, and scalar-admin.

Related issues and/or PRs

N/A

Changes made

  • Upgraded the gRPC library, the Protocol Buffers library, grpc_health_probe, and scalar-admin.

Checklist

  • I have commented my code, particularly in hard-to-understand areas.
  • I have updated the documentation to reflect the changes.
  • Any remaining open issues linked to this PR are documented and up-to-date (Jira, GitHub, etc.).
  • Tests (unit, integration, etc.) have been added for the changes.
  • My changes generate no new warnings.
  • Any dependent changes in other PRs have been merged and published.

Additional notes (optional)

N/A

Release notes

Upgraded the gRPC library, the Protocol Buffers library, grpc_health_probe, and scalar-admin to fix security issues. CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156

@brfrn169 brfrn169 self-assigned this Oct 11, 2024
@brfrn169
Copy link
Collaborator Author

I’ll merge this PR because the same changes were already approved in ScalarDB Cluster.

@brfrn169 brfrn169 merged commit 368f3f0 into 3.13 Oct 11, 2024
48 checks passed
@brfrn169 brfrn169 deleted the fix-vulnerabilities branch October 11, 2024 10:53
This was referenced Oct 11, 2024
Merged
Merged
Merged
Merged
brfrn169 added a commit that referenced this pull request Oct 11, 2024
@brfrn169
Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 (#2277)
7f70d3d
brfrn169 added a commit that referenced this pull request Oct 11, 2024
@brfrn169
Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 (#2277)
7db3eae
brfrn169 added a commit that referenced this pull request Oct 11, 2024
@brfrn169
Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 (#2277)
3f281b2
brfrn169 added a commit that referenced this pull request Oct 11, 2024
@brfrn169
Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 (#2277)
741e1e6
brfrn169 added a commit that referenced this pull request Oct 11, 2024
@brfrn169
Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 (#2277)
1a2563e
brfrn169 added a commit that referenced this pull request Oct 11, 2024
@brfrn169
Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 (#2277)
0ace1a9
brfrn169 added a commit that referenced this pull request Oct 11, 2024
@brfrn169
Fix CVE-2024-7254, CVE-2024-25638, and CVE-2024-34156 (#2277)
20f654d
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@brfrn169 brfrn169

Labels
bugfix
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@brfrn169