Security Alert: 1.16.11

Question

sheidkamp opened this issue 2 months ago · comments

quay.io/solo-io/kubectl:1.16.11

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.16.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/kubectl

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2023-45288	stdlib	HIGH	1.20.11	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288

Sam Heilbron · Answer 1 · Wed May 29 2024 02:30:34 GMT+0800 (China Standard Time)

1.16.11 is no longer the latest version that we have published: https://github.com/solo-io/gloo/releases/tag/v1.16.14

The later versions of Gloo@1.16 do not have this vulnerability, so I am closing this issue as "not doing"