From 2cfaab335f005c7809b2528d485f20520f17edbf Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 22 Jan 2025 09:22:28 +0200 Subject: [PATCH] [Bot] docs: Update Snyk report (#21558) Signed-off-by: CI Co-authored-by: CI --- docs/snyk/index.md | 8 +- docs/snyk/master/argocd-iac-install.html | 68 +++--- .../master/argocd-iac-namespace-install.html | 68 +++--- docs/snyk/master/argocd-test.html | 8 +- .../master/ghcr.io_dexidp_dex_v2.41.1.html | 2 +- ..._docker_library_haproxy_2.6.17-alpine.html | 2 +- ...ws_docker_library_redis_7.0.15-alpine.html | 2 +- .../quay.io_argoproj_argocd_latest.html | 74 +++---- docs/snyk/master/redis_7.0.15-alpine.html | 2 +- docs/snyk/v2.11.12/argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- docs/snyk/v2.11.12/argocd-test.html | 2 +- .../v2.11.12/ghcr.io_dexidp_dex_v2.38.0.html | 2 +- docs/snyk/v2.11.12/haproxy_2.6.14-alpine.html | 2 +- .../quay.io_argoproj_argocd_v2.11.12.html | 197 +++++++++++++++++- docs/snyk/v2.11.12/redis_7.0.15-alpine.html | 2 +- docs/snyk/v2.12.9/argocd-iac-install.html | 2 +- .../v2.12.9/argocd-iac-namespace-install.html | 2 +- docs/snyk/v2.12.9/argocd-test.html | 2 +- .../v2.12.9/ghcr.io_dexidp_dex_v2.38.0.html | 2 +- ..._docker_library_haproxy_2.6.17-alpine.html | 2 +- ...ws_docker_library_redis_7.0.15-alpine.html | 2 +- .../quay.io_argoproj_argocd_v2.12.9.html | 197 +++++++++++++++++- docs/snyk/v2.12.9/redis_7.0.15-alpine.html | 2 +- docs/snyk/v2.13.3/argocd-iac-install.html | 2 +- .../v2.13.3/argocd-iac-namespace-install.html | 2 +- docs/snyk/v2.13.3/argocd-test.html | 2 +- .../v2.13.3/ghcr.io_dexidp_dex_v2.41.1.html | 2 +- ..._docker_library_haproxy_2.6.17-alpine.html | 2 +- ...ws_docker_library_redis_7.0.15-alpine.html | 2 +- .../quay.io_argoproj_argocd_v2.13.3.html | 197 +++++++++++++++++- docs/snyk/v2.13.3/redis_7.0.15-alpine.html | 2 +- docs/snyk/v2.14.0-rc5/argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- docs/snyk/v2.14.0-rc5/argocd-test.html | 2 +- .../ghcr.io_dexidp_dex_v2.41.1.html | 2 +- ..._docker_library_haproxy_2.6.17-alpine.html | 2 +- ...ws_docker_library_redis_7.0.15-alpine.html | 2 +- .../quay.io_argoproj_argocd_v2.14.0-rc5.html | 197 +++++++++++++++++- .../snyk/v2.14.0-rc5/redis_7.0.15-alpine.html | 2 +- 40 files changed, 916 insertions(+), 160 deletions(-) diff --git a/docs/snyk/index.md b/docs/snyk/index.md index 76c74ecca4c03..a4f4b42d75e75 100644 --- a/docs/snyk/index.md +++ b/docs/snyk/index.md @@ -32,7 +32,7 @@ recent minor releases. | [dex:v2.41.1](v2.14.0-rc5/ghcr.io_dexidp_dex_v2.41.1.html) | 0 | 0 | 0 | 2 | | [haproxy:2.6.17-alpine](v2.14.0-rc5/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html) | 0 | 0 | 2 | 4 | | [redis:7.0.15-alpine](v2.14.0-rc5/public.ecr.aws_docker_library_redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | -| [argocd:v2.14.0-rc5](v2.14.0-rc5/quay.io_argoproj_argocd_v2.14.0-rc5.html) | 0 | 0 | 4 | 10 | +| [argocd:v2.14.0-rc5](v2.14.0-rc5/quay.io_argoproj_argocd_v2.14.0-rc5.html) | 0 | 0 | 6 | 10 | | [redis:7.0.15-alpine](v2.14.0-rc5/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | | [install.yaml](v2.14.0-rc5/argocd-iac-install.html) | - | - | - | - | | [namespace-install.yaml](v2.14.0-rc5/argocd-iac-namespace-install.html) | - | - | - | - | @@ -46,7 +46,7 @@ recent minor releases. | [dex:v2.41.1](v2.13.3/ghcr.io_dexidp_dex_v2.41.1.html) | 0 | 0 | 0 | 2 | | [haproxy:2.6.17-alpine](v2.13.3/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html) | 0 | 0 | 2 | 4 | | [redis:7.0.15-alpine](v2.13.3/public.ecr.aws_docker_library_redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | -| [argocd:v2.13.3](v2.13.3/quay.io_argoproj_argocd_v2.13.3.html) | 0 | 0 | 4 | 10 | +| [argocd:v2.13.3](v2.13.3/quay.io_argoproj_argocd_v2.13.3.html) | 0 | 0 | 6 | 10 | | [redis:7.0.15-alpine](v2.13.3/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | | [install.yaml](v2.13.3/argocd-iac-install.html) | - | - | - | - | | [namespace-install.yaml](v2.13.3/argocd-iac-namespace-install.html) | - | - | - | - | @@ -60,7 +60,7 @@ recent minor releases. | [dex:v2.38.0](v2.12.9/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 6 | 7 | | [haproxy:2.6.17-alpine](v2.12.9/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html) | 0 | 0 | 2 | 4 | | [redis:7.0.15-alpine](v2.12.9/public.ecr.aws_docker_library_redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | -| [argocd:v2.12.9](v2.12.9/quay.io_argoproj_argocd_v2.12.9.html) | 0 | 0 | 4 | 10 | +| [argocd:v2.12.9](v2.12.9/quay.io_argoproj_argocd_v2.12.9.html) | 0 | 0 | 6 | 10 | | [redis:7.0.15-alpine](v2.12.9/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | | [install.yaml](v2.12.9/argocd-iac-install.html) | - | - | - | - | | [namespace-install.yaml](v2.12.9/argocd-iac-namespace-install.html) | - | - | - | - | @@ -73,7 +73,7 @@ recent minor releases. | [ui/yarn.lock](v2.11.12/argocd-test.html) | 0 | 0 | 1 | 0 | | [dex:v2.38.0](v2.11.12/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 6 | 7 | | [haproxy:2.6.14-alpine](v2.11.12/haproxy_2.6.14-alpine.html) | 0 | 1 | 7 | 7 | -| [argocd:v2.11.12](v2.11.12/quay.io_argoproj_argocd_v2.11.12.html) | 0 | 0 | 5 | 21 | +| [argocd:v2.11.12](v2.11.12/quay.io_argoproj_argocd_v2.11.12.html) | 0 | 0 | 7 | 21 | | [redis:7.0.15-alpine](v2.11.12/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | | [install.yaml](v2.11.12/argocd-iac-install.html) | - | - | - | - | | [namespace-install.yaml](v2.11.12/argocd-iac-namespace-install.html) | - | - | - | - | diff --git a/docs/snyk/master/argocd-iac-install.html b/docs/snyk/master/argocd-iac-install.html index a675e8c3c2656..6fd06325b45f9 100644 --- a/docs/snyk/master/argocd-iac-install.html +++ b/docs/snyk/master/argocd-iac-install.html @@ -456,7 +456,7 @@

Snyk test report

-

January 12th 2025, 12:22:26 am (UTC+00:00)

+

January 19th 2025, 12:21:30 am (UTC+00:00)

Scanned the following path: @@ -881,7 +881,7 @@

Container could be running with outdated image

  • - Line number: 24926 + Line number: 24944
    • @@ -933,7 +933,7 @@

    Container could be running with outdated image

  • - Line number: 25233 + Line number: 25257
    • @@ -1049,7 +1049,7 @@

    Container has no CPU limit

  • - Line number: 24728 + Line number: 24740
    • @@ -1107,7 +1107,7 @@

    Container has no CPU limit

  • - Line number: 24682 + Line number: 24688
    • @@ -1165,7 +1165,7 @@

    Container has no CPU limit

  • - Line number: 24790 + Line number: 24802
    • @@ -1223,7 +1223,7 @@

    Container has no CPU limit

  • - Line number: 24897 + Line number: 24915
    • @@ -1281,7 +1281,7 @@

    Container has no CPU limit

  • - Line number: 24921 + Line number: 24939
    • @@ -1339,7 +1339,7 @@

    Container has no CPU limit

  • - Line number: 25233 + Line number: 25257
    • @@ -1397,7 +1397,7 @@

    Container has no CPU limit

  • - Line number: 24980 + Line number: 24998
    • @@ -1455,7 +1455,7 @@

    Container has no CPU limit

  • - Line number: 25320 + Line number: 25344
    • @@ -1513,7 +1513,7 @@

    Container has no CPU limit

  • - Line number: 25718 + Line number: 25742
    • @@ -1565,7 +1565,7 @@

    Container is running with multiple open ports

  • - Line number: 24708 + Line number: 24720
    • @@ -1669,7 +1669,7 @@

    Container is running without liveness probe

  • - Line number: 24682 + Line number: 24688
    • @@ -1721,7 +1721,7 @@

    Container is running without liveness probe

  • - Line number: 24897 + Line number: 24915
    • @@ -1837,7 +1837,7 @@

    Container is running without memory limit

  • - Line number: 24682 + Line number: 24688
    • @@ -1895,7 +1895,7 @@

    Container is running without memory limit

  • - Line number: 24728 + Line number: 24740
    • @@ -1953,7 +1953,7 @@

    Container is running without memory limit

  • - Line number: 24790 + Line number: 24802
    • @@ -2011,7 +2011,7 @@

    Container is running without memory limit

  • - Line number: 24897 + Line number: 24915
    • @@ -2069,7 +2069,7 @@

    Container is running without memory limit

  • - Line number: 24921 + Line number: 24939
    • @@ -2127,7 +2127,7 @@

    Container is running without memory limit

  • - Line number: 25233 + Line number: 25257
    • @@ -2185,7 +2185,7 @@

    Container is running without memory limit

  • - Line number: 24980 + Line number: 24998
    • @@ -2243,7 +2243,7 @@

    Container is running without memory limit

  • - Line number: 25320 + Line number: 25344
    • @@ -2301,7 +2301,7 @@

    Container is running without memory limit

  • - Line number: 25718 + Line number: 25742
    • @@ -2357,7 +2357,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 24604 + Line number: 24610
    • @@ -2413,7 +2413,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 24736 + Line number: 24748
    • @@ -2469,7 +2469,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 24711 + Line number: 24723
    • @@ -2525,7 +2525,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 24829 + Line number: 24847
    • @@ -2581,7 +2581,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 24914 + Line number: 24932
    • @@ -2637,7 +2637,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 24928 + Line number: 24946
    • @@ -2693,7 +2693,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 25240 + Line number: 25264
    • @@ -2749,7 +2749,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 25206 + Line number: 25230
    • @@ -2805,7 +2805,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 25617 + Line number: 25641
    • @@ -2861,7 +2861,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 25963 + Line number: 25993
    • diff --git a/docs/snyk/master/argocd-iac-namespace-install.html b/docs/snyk/master/argocd-iac-namespace-install.html index b7a80609b5e0d..d562802d79581 100644 --- a/docs/snyk/master/argocd-iac-namespace-install.html +++ b/docs/snyk/master/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:22:35 am (UTC+00:00)

    +

    January 19th 2025, 12:21:41 am (UTC+00:00)

    Scanned the following path: @@ -835,7 +835,7 @@

    Container could be running with outdated image

  • - Line number: 1156 + Line number: 1174
    • @@ -887,7 +887,7 @@

    Container could be running with outdated image

  • - Line number: 1463 + Line number: 1487
    • @@ -1003,7 +1003,7 @@

    Container has no CPU limit

  • - Line number: 958 + Line number: 970
    • @@ -1061,7 +1061,7 @@

    Container has no CPU limit

  • - Line number: 912 + Line number: 918
    • @@ -1119,7 +1119,7 @@

    Container has no CPU limit

  • - Line number: 1020 + Line number: 1032
    • @@ -1177,7 +1177,7 @@

    Container has no CPU limit

  • - Line number: 1127 + Line number: 1145
    • @@ -1235,7 +1235,7 @@

    Container has no CPU limit

  • - Line number: 1151 + Line number: 1169
    • @@ -1293,7 +1293,7 @@

    Container has no CPU limit

  • - Line number: 1463 + Line number: 1487
    • @@ -1351,7 +1351,7 @@

    Container has no CPU limit

  • - Line number: 1210 + Line number: 1228
    • @@ -1409,7 +1409,7 @@

    Container has no CPU limit

  • - Line number: 1550 + Line number: 1574
    • @@ -1467,7 +1467,7 @@

    Container has no CPU limit

  • - Line number: 1948 + Line number: 1972
    • @@ -1519,7 +1519,7 @@

    Container is running with multiple open ports

  • - Line number: 938 + Line number: 950
    • @@ -1623,7 +1623,7 @@

    Container is running without liveness probe

  • - Line number: 912 + Line number: 918
    • @@ -1675,7 +1675,7 @@

    Container is running without liveness probe

  • - Line number: 1127 + Line number: 1145
    • @@ -1791,7 +1791,7 @@

    Container is running without memory limit

  • - Line number: 912 + Line number: 918
    • @@ -1849,7 +1849,7 @@

    Container is running without memory limit

  • - Line number: 958 + Line number: 970
    • @@ -1907,7 +1907,7 @@

    Container is running without memory limit

  • - Line number: 1020 + Line number: 1032
    • @@ -1965,7 +1965,7 @@

    Container is running without memory limit

  • - Line number: 1127 + Line number: 1145
    • @@ -2023,7 +2023,7 @@

    Container is running without memory limit

  • - Line number: 1151 + Line number: 1169
    • @@ -2081,7 +2081,7 @@

    Container is running without memory limit

  • - Line number: 1463 + Line number: 1487
    • @@ -2139,7 +2139,7 @@

    Container is running without memory limit

  • - Line number: 1210 + Line number: 1228
    • @@ -2197,7 +2197,7 @@

    Container is running without memory limit

  • - Line number: 1550 + Line number: 1574
    • @@ -2255,7 +2255,7 @@

    Container is running without memory limit

  • - Line number: 1948 + Line number: 1972
    • @@ -2311,7 +2311,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 834 + Line number: 840
    • @@ -2367,7 +2367,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 966 + Line number: 978
    • @@ -2423,7 +2423,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 941 + Line number: 953
    • @@ -2479,7 +2479,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 1059 + Line number: 1077
    • @@ -2535,7 +2535,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 1144 + Line number: 1162
    • @@ -2591,7 +2591,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 1158 + Line number: 1176
    • @@ -2647,7 +2647,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 1470 + Line number: 1494
    • @@ -2703,7 +2703,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 1436 + Line number: 1460
    • @@ -2759,7 +2759,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 1847 + Line number: 1871
    • @@ -2815,7 +2815,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 2193 + Line number: 2223
    • diff --git a/docs/snyk/master/argocd-test.html b/docs/snyk/master/argocd-test.html index 8e8a3ac8595bb..fe23608bbe5b5 100644 --- a/docs/snyk/master/argocd-test.html +++ b/docs/snyk/master/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:20:03 am (UTC+00:00)

    +

    January 19th 2025, 12:19:14 am (UTC+00:00)

    Scanned the following paths: @@ -470,7 +470,7 @@

    Snyk test report

    7 known vulnerabilities
    26 vulnerable dependency paths
    -
    2084 dependencies
    +
    2085 dependencies
    @@ -628,7 +628,7 @@

    MPL-2.0 license

  • Introduced through: - github.com/argoproj/argo-cd/v3@0.0.0, code.gitea.io/sdk/gitea@0.19.0 and others + github.com/argoproj/argo-cd/v3@0.0.0, code.gitea.io/sdk/gitea@0.20.0 and others
    • @@ -642,7 +642,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v3@0.0.0 - code.gitea.io/sdk/gitea@0.19.0 + code.gitea.io/sdk/gitea@0.20.0 github.com/hashicorp/go-version@1.6.0 diff --git a/docs/snyk/master/ghcr.io_dexidp_dex_v2.41.1.html b/docs/snyk/master/ghcr.io_dexidp_dex_v2.41.1.html index 5fc3c206daceb..8fddf829a8a4f 100644 --- a/docs/snyk/master/ghcr.io_dexidp_dex_v2.41.1.html +++ b/docs/snyk/master/ghcr.io_dexidp_dex_v2.41.1.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:20:13 am (UTC+00:00)

    +

    January 19th 2025, 12:19:23 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/master/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html b/docs/snyk/master/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html index f92ffad87e2f0..91bf995683338 100644 --- a/docs/snyk/master/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html +++ b/docs/snyk/master/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:20:20 am (UTC+00:00)

    +

    January 19th 2025, 12:19:29 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/master/public.ecr.aws_docker_library_redis_7.0.15-alpine.html b/docs/snyk/master/public.ecr.aws_docker_library_redis_7.0.15-alpine.html index 73b92a5ac151a..bc3c045d022fd 100644 --- a/docs/snyk/master/public.ecr.aws_docker_library_redis_7.0.15-alpine.html +++ b/docs/snyk/master/public.ecr.aws_docker_library_redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:20:26 am (UTC+00:00)

    +

    January 19th 2025, 12:19:35 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/master/quay.io_argoproj_argocd_latest.html b/docs/snyk/master/quay.io_argoproj_argocd_latest.html index 57f7aa027835b..d264ecdd7dc1a 100644 --- a/docs/snyk/master/quay.io_argoproj_argocd_latest.html +++ b/docs/snyk/master/quay.io_argoproj_argocd_latest.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:20:50 am (UTC+00:00)

    +

    January 19th 2025, 12:19:55 am (UTC+00:00)

    Scanned the following paths: @@ -472,7 +472,7 @@

    Snyk test report

    22 known vulnerabilities
    105 vulnerable dependency paths
    -
    2383 dependencies
    +
    2384 dependencies
    @@ -1169,7 +1169,7 @@

    CVE-2024-26462

  • Introduced through: - docker-image|quay.io/argoproj/argocd@latest, git@1:2.43.0-1ubuntu7.1 and others + docker-image|quay.io/argoproj/argocd@latest, git@1:2.43.0-1ubuntu7.2 and others
    • @@ -1183,7 +1183,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -1198,7 +1198,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -1215,7 +1215,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -1230,7 +1230,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -1247,7 +1247,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -1266,7 +1266,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -1292,7 +1292,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -1305,7 +1305,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2022,7 +2022,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2037,7 +2037,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2054,7 +2054,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2304,7 +2304,7 @@

    CVE-2024-26458

  • Introduced through: - docker-image|quay.io/argoproj/argocd@latest, git@1:2.43.0-1ubuntu7.1 and others + docker-image|quay.io/argoproj/argocd@latest, git@1:2.43.0-1ubuntu7.2 and others
    • @@ -2318,7 +2318,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2333,7 +2333,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2350,7 +2350,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2365,7 +2365,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2382,7 +2382,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2401,7 +2401,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2427,7 +2427,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2440,7 +2440,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2512,7 +2512,7 @@

    CVE-2024-26461

  • Introduced through: - docker-image|quay.io/argoproj/argocd@latest, git@1:2.43.0-1ubuntu7.1 and others + docker-image|quay.io/argoproj/argocd@latest, git@1:2.43.0-1ubuntu7.2 and others
    • @@ -2526,7 +2526,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2541,7 +2541,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2558,7 +2558,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2573,7 +2573,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2590,7 +2590,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2609,7 +2609,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2635,7 +2635,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2648,7 +2648,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 curl/libcurl3t64-gnutls@8.5.0-2ubuntu10.6 @@ -2947,7 +2947,7 @@

    Improper Input Validation

  • Introduced through: - docker-image|quay.io/argoproj/argocd@latest, git@1:2.43.0-1ubuntu7.1 and others + docker-image|quay.io/argoproj/argocd@latest, git@1:2.43.0-1ubuntu7.2 and others
    • @@ -2961,9 +2961,9 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 - git/git-man@1:2.43.0-1ubuntu7.1 + git/git-man@1:2.43.0-1ubuntu7.2 @@ -2972,7 +2972,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2 @@ -2983,7 +2983,7 @@

    Detailed paths

    git-lfs@3.4.1-1ubuntu0.2 - git@1:2.43.0-1ubuntu7.1 + git@1:2.43.0-1ubuntu7.2     diff --git a/docs/snyk/master/redis_7.0.15-alpine.html b/docs/snyk/master/redis_7.0.15-alpine.html index 43800db75af1d..ff5cc0f44035d 100644 --- a/docs/snyk/master/redis_7.0.15-alpine.html +++ b/docs/snyk/master/redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:20:55 am (UTC+00:00)

    +

    January 19th 2025, 12:20:00 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.11.12/argocd-iac-install.html b/docs/snyk/v2.11.12/argocd-iac-install.html index b9849f4ea39da..69cb61e1b9875 100644 --- a/docs/snyk/v2.11.12/argocd-iac-install.html +++ b/docs/snyk/v2.11.12/argocd-iac-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:32:52 am (UTC+00:00)

    +

    January 19th 2025, 12:31:47 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.11.12/argocd-iac-namespace-install.html b/docs/snyk/v2.11.12/argocd-iac-namespace-install.html index fad8238557f71..b8318e94ac182 100644 --- a/docs/snyk/v2.11.12/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.11.12/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:33:02 am (UTC+00:00)

    +

    January 19th 2025, 12:31:59 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.11.12/argocd-test.html b/docs/snyk/v2.11.12/argocd-test.html index a4200bd7342d6..c94661988dcdd 100644 --- a/docs/snyk/v2.11.12/argocd-test.html +++ b/docs/snyk/v2.11.12/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:30:49 am (UTC+00:00)

    +

    January 19th 2025, 12:29:42 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.11.12/ghcr.io_dexidp_dex_v2.38.0.html b/docs/snyk/v2.11.12/ghcr.io_dexidp_dex_v2.38.0.html index cad5e78022a00..1142e6ca715f5 100644 --- a/docs/snyk/v2.11.12/ghcr.io_dexidp_dex_v2.38.0.html +++ b/docs/snyk/v2.11.12/ghcr.io_dexidp_dex_v2.38.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:30:57 am (UTC+00:00)

    +

    January 19th 2025, 12:29:51 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.11.12/haproxy_2.6.14-alpine.html b/docs/snyk/v2.11.12/haproxy_2.6.14-alpine.html index 70798249f7648..de32dad6c0cce 100644 --- a/docs/snyk/v2.11.12/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.11.12/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:31:03 am (UTC+00:00)

    +

    January 19th 2025, 12:29:58 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.11.12/quay.io_argoproj_argocd_v2.11.12.html b/docs/snyk/v2.11.12/quay.io_argoproj_argocd_v2.11.12.html index d31a4f2dd35a2..1b37dbf6c0e27 100644 --- a/docs/snyk/v2.11.12/quay.io_argoproj_argocd_v2.11.12.html +++ b/docs/snyk/v2.11.12/quay.io_argoproj_argocd_v2.11.12.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:31:25 am (UTC+00:00)

    +

    January 19th 2025, 12:30:22 am (UTC+00:00)

    Scanned the following paths: @@ -470,8 +470,8 @@

    Snyk test report

    -
    43 known vulnerabilities
    -
    205 vulnerable dependency paths
    +
    45 known vulnerabilities
    +
    211 vulnerable dependency paths
    2280 dependencies
    @@ -2099,6 +2099,195 @@

    References

    More about this vulnerability

    +
    +
    +

    Improper Encoding or Escaping of Output

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.11.12/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + git/git-man +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.11.12, git@1:2.34.1-1ubuntu1.11 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.11.12 + + git@1:2.34.1-1ubuntu1.11 + + git/git-man@1:2.34.1-1ubuntu1.11 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.11.12 + + git@1:2.34.1-1ubuntu1.11 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.11.12 + + git-lfs@3.0.2-1ubuntu0.2 + + git@1:2.34.1-1ubuntu1.11 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems (most notably, .NET and node.js) interpret single Carriage Return characters as newlines, which renders the protections against CVE-2020-5260 incomplete for credential helpers that treat Carriage Returns in this way. This issue has been addressed in commit b01b9b8 which is included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

    +

    Remediation

    +

    Upgrade Ubuntu:22.04 git to version 1:2.34.1-1ubuntu1.12 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    + +
    +
    +

    Improper Encoding or Escaping of Output

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.11.12/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + git/git-man +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.11.12, git@1:2.34.1-1ubuntu1.11 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.11.12 + + git@1:2.34.1-1ubuntu1.11 + + git/git-man@1:2.34.1-1ubuntu1.11 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.11.12 + + git@1:2.34.1-1ubuntu1.11 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.11.12 + + git-lfs@3.0.2-1ubuntu0.2 + + git@1:2.34.1-1ubuntu1.11 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker's control. This issue has been patch via commits 7725b81 and c903985 which are included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

    +

    Remediation

    +

    Upgrade Ubuntu:22.04 git to version 1:2.34.1-1ubuntu1.12 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    CVE-2023-4039

    diff --git a/docs/snyk/v2.11.12/redis_7.0.15-alpine.html b/docs/snyk/v2.11.12/redis_7.0.15-alpine.html index a34bdb9629e3d..1f990753f5b4f 100644 --- a/docs/snyk/v2.11.12/redis_7.0.15-alpine.html +++ b/docs/snyk/v2.11.12/redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:31:30 am (UTC+00:00)

    +

    January 19th 2025, 12:30:27 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.12.9/argocd-iac-install.html b/docs/snyk/v2.12.9/argocd-iac-install.html index 58fd1d95b8cc7..85a7e4ead484e 100644 --- a/docs/snyk/v2.12.9/argocd-iac-install.html +++ b/docs/snyk/v2.12.9/argocd-iac-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:30:23 am (UTC+00:00)

    +

    January 19th 2025, 12:29:14 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.12.9/argocd-iac-namespace-install.html b/docs/snyk/v2.12.9/argocd-iac-namespace-install.html index 80637e5552b6b..d7fb0e256402f 100644 --- a/docs/snyk/v2.12.9/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.12.9/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:30:32 am (UTC+00:00)

    +

    January 19th 2025, 12:29:25 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.12.9/argocd-test.html b/docs/snyk/v2.12.9/argocd-test.html index 935cefbcb20fe..be727e5a8ac08 100644 --- a/docs/snyk/v2.12.9/argocd-test.html +++ b/docs/snyk/v2.12.9/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:28:19 am (UTC+00:00)

    +

    January 19th 2025, 12:27:08 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.12.9/ghcr.io_dexidp_dex_v2.38.0.html b/docs/snyk/v2.12.9/ghcr.io_dexidp_dex_v2.38.0.html index f5079fa6bfd0c..ac8351bce41b4 100644 --- a/docs/snyk/v2.12.9/ghcr.io_dexidp_dex_v2.38.0.html +++ b/docs/snyk/v2.12.9/ghcr.io_dexidp_dex_v2.38.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:28:28 am (UTC+00:00)

    +

    January 19th 2025, 12:27:19 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.12.9/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html b/docs/snyk/v2.12.9/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html index 44a72913c282c..2b2f51d0e118e 100644 --- a/docs/snyk/v2.12.9/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html +++ b/docs/snyk/v2.12.9/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:28:32 am (UTC+00:00)

    +

    January 19th 2025, 12:27:23 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.12.9/public.ecr.aws_docker_library_redis_7.0.15-alpine.html b/docs/snyk/v2.12.9/public.ecr.aws_docker_library_redis_7.0.15-alpine.html index df2a25d27441e..cc2dd4117ab4f 100644 --- a/docs/snyk/v2.12.9/public.ecr.aws_docker_library_redis_7.0.15-alpine.html +++ b/docs/snyk/v2.12.9/public.ecr.aws_docker_library_redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:28:36 am (UTC+00:00)

    +

    January 19th 2025, 12:27:28 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.12.9/quay.io_argoproj_argocd_v2.12.9.html b/docs/snyk/v2.12.9/quay.io_argoproj_argocd_v2.12.9.html index 65059ea67911d..c4c5583874f0b 100644 --- a/docs/snyk/v2.12.9/quay.io_argoproj_argocd_v2.12.9.html +++ b/docs/snyk/v2.12.9/quay.io_argoproj_argocd_v2.12.9.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:28:58 am (UTC+00:00)

    +

    January 19th 2025, 12:27:48 am (UTC+00:00)

    Scanned the following paths: @@ -470,8 +470,8 @@

    Snyk test report

    -
    28 known vulnerabilities
    -
    112 vulnerable dependency paths
    +
    30 known vulnerabilities
    +
    118 vulnerable dependency paths
    2292 dependencies
    @@ -2100,6 +2100,195 @@

    References

    More about this vulnerability

    +
    +
    +

    Improper Encoding or Escaping of Output

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.12.9/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:24.04 +
      • +
    • + Vulnerable module: + + git/git-man +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.12.9, git@1:2.43.0-1ubuntu7.1 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.12.9 + + git@1:2.43.0-1ubuntu7.1 + + git/git-man@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.12.9 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.12.9 + + git-lfs@3.4.1-1ubuntu0.2 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Ubuntu. + See How to fix? for Ubuntu:24.04 relevant fixed versions and status.

    +

    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems (most notably, .NET and node.js) interpret single Carriage Return characters as newlines, which renders the protections against CVE-2020-5260 incomplete for credential helpers that treat Carriage Returns in this way. This issue has been addressed in commit b01b9b8 which is included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

    +

    Remediation

    +

    Upgrade Ubuntu:24.04 git to version 1:2.43.0-1ubuntu7.2 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    + +
    +
    +

    Improper Encoding or Escaping of Output

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.12.9/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:24.04 +
      • +
    • + Vulnerable module: + + git/git-man +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.12.9, git@1:2.43.0-1ubuntu7.1 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.12.9 + + git@1:2.43.0-1ubuntu7.1 + + git/git-man@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.12.9 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.12.9 + + git-lfs@3.4.1-1ubuntu0.2 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Ubuntu. + See How to fix? for Ubuntu:24.04 relevant fixed versions and status.

    +

    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker's control. This issue has been patch via commits 7725b81 and c903985 which are included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

    +

    Remediation

    +

    Upgrade Ubuntu:24.04 git to version 1:2.43.0-1ubuntu7.2 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    Release of Invalid Pointer or Reference

    diff --git a/docs/snyk/v2.12.9/redis_7.0.15-alpine.html b/docs/snyk/v2.12.9/redis_7.0.15-alpine.html index 2f7d24c98f687..e963a87cee62d 100644 --- a/docs/snyk/v2.12.9/redis_7.0.15-alpine.html +++ b/docs/snyk/v2.12.9/redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:29:03 am (UTC+00:00)

    +

    January 19th 2025, 12:27:53 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.13.3/argocd-iac-install.html b/docs/snyk/v2.13.3/argocd-iac-install.html index 1f00315678609..c20398f262f68 100644 --- a/docs/snyk/v2.13.3/argocd-iac-install.html +++ b/docs/snyk/v2.13.3/argocd-iac-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:27:45 am (UTC+00:00)

    +

    January 19th 2025, 12:26:40 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.13.3/argocd-iac-namespace-install.html b/docs/snyk/v2.13.3/argocd-iac-namespace-install.html index 96ad6f64733dd..c23e4454ef62d 100644 --- a/docs/snyk/v2.13.3/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.13.3/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:28:00 am (UTC+00:00)

    +

    January 19th 2025, 12:26:51 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.13.3/argocd-test.html b/docs/snyk/v2.13.3/argocd-test.html index 308b15110c554..56384fca737e2 100644 --- a/docs/snyk/v2.13.3/argocd-test.html +++ b/docs/snyk/v2.13.3/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:25:37 am (UTC+00:00)

    +

    January 19th 2025, 12:24:37 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.13.3/ghcr.io_dexidp_dex_v2.41.1.html b/docs/snyk/v2.13.3/ghcr.io_dexidp_dex_v2.41.1.html index 200861c3be48b..40268d4130cc3 100644 --- a/docs/snyk/v2.13.3/ghcr.io_dexidp_dex_v2.41.1.html +++ b/docs/snyk/v2.13.3/ghcr.io_dexidp_dex_v2.41.1.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:25:45 am (UTC+00:00)

    +

    January 19th 2025, 12:24:44 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.13.3/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html b/docs/snyk/v2.13.3/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html index 8e9f9ad8c2092..2b8d745b687f5 100644 --- a/docs/snyk/v2.13.3/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html +++ b/docs/snyk/v2.13.3/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:25:50 am (UTC+00:00)

    +

    January 19th 2025, 12:24:48 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.13.3/public.ecr.aws_docker_library_redis_7.0.15-alpine.html b/docs/snyk/v2.13.3/public.ecr.aws_docker_library_redis_7.0.15-alpine.html index def15d361b7e9..e2d13eada768f 100644 --- a/docs/snyk/v2.13.3/public.ecr.aws_docker_library_redis_7.0.15-alpine.html +++ b/docs/snyk/v2.13.3/public.ecr.aws_docker_library_redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:25:54 am (UTC+00:00)

    +

    January 19th 2025, 12:24:52 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.13.3/quay.io_argoproj_argocd_v2.13.3.html b/docs/snyk/v2.13.3/quay.io_argoproj_argocd_v2.13.3.html index 1a3222ac88f63..7a640ae81b6da 100644 --- a/docs/snyk/v2.13.3/quay.io_argoproj_argocd_v2.13.3.html +++ b/docs/snyk/v2.13.3/quay.io_argoproj_argocd_v2.13.3.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:26:13 am (UTC+00:00)

    +

    January 19th 2025, 12:25:12 am (UTC+00:00)

    Scanned the following paths: @@ -470,8 +470,8 @@

    Snyk test report

    -
    27 known vulnerabilities
    -
    111 vulnerable dependency paths
    +
    29 known vulnerabilities
    +
    117 vulnerable dependency paths
    2354 dependencies
    @@ -1990,6 +1990,195 @@

    References

    More about this vulnerability

    +
    +
    +

    Improper Encoding or Escaping of Output

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.13.3/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:24.04 +
      • +
    • + Vulnerable module: + + git/git-man +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.13.3, git@1:2.43.0-1ubuntu7.1 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.13.3 + + git@1:2.43.0-1ubuntu7.1 + + git/git-man@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.13.3 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.13.3 + + git-lfs@3.4.1-1ubuntu0.2 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Ubuntu. + See How to fix? for Ubuntu:24.04 relevant fixed versions and status.

    +

    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems (most notably, .NET and node.js) interpret single Carriage Return characters as newlines, which renders the protections against CVE-2020-5260 incomplete for credential helpers that treat Carriage Returns in this way. This issue has been addressed in commit b01b9b8 which is included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

    +

    Remediation

    +

    Upgrade Ubuntu:24.04 git to version 1:2.43.0-1ubuntu7.2 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    + +
    +
    +

    Improper Encoding or Escaping of Output

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.13.3/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:24.04 +
      • +
    • + Vulnerable module: + + git/git-man +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.13.3, git@1:2.43.0-1ubuntu7.1 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.13.3 + + git@1:2.43.0-1ubuntu7.1 + + git/git-man@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.13.3 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.13.3 + + git-lfs@3.4.1-1ubuntu0.2 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Ubuntu. + See How to fix? for Ubuntu:24.04 relevant fixed versions and status.

    +

    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker's control. This issue has been patch via commits 7725b81 and c903985 which are included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

    +

    Remediation

    +

    Upgrade Ubuntu:24.04 git to version 1:2.43.0-1ubuntu7.2 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    Release of Invalid Pointer or Reference

    diff --git a/docs/snyk/v2.13.3/redis_7.0.15-alpine.html b/docs/snyk/v2.13.3/redis_7.0.15-alpine.html index 8d9c031e1ee52..32af76f560d76 100644 --- a/docs/snyk/v2.13.3/redis_7.0.15-alpine.html +++ b/docs/snyk/v2.13.3/redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:26:18 am (UTC+00:00)

    +

    January 19th 2025, 12:25:16 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.14.0-rc5/argocd-iac-install.html b/docs/snyk/v2.14.0-rc5/argocd-iac-install.html index fce147d2fd2db..a52f44b0880fd 100644 --- a/docs/snyk/v2.14.0-rc5/argocd-iac-install.html +++ b/docs/snyk/v2.14.0-rc5/argocd-iac-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:25:13 am (UTC+00:00)

    +

    January 19th 2025, 12:24:12 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.14.0-rc5/argocd-iac-namespace-install.html b/docs/snyk/v2.14.0-rc5/argocd-iac-namespace-install.html index 4b8c027c6ab7b..6745dde8e3783 100644 --- a/docs/snyk/v2.14.0-rc5/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.14.0-rc5/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:25:23 am (UTC+00:00)

    +

    January 19th 2025, 12:24:23 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.14.0-rc5/argocd-test.html b/docs/snyk/v2.14.0-rc5/argocd-test.html index b94f4e0dd3d5d..49e6d8d666dee 100644 --- a/docs/snyk/v2.14.0-rc5/argocd-test.html +++ b/docs/snyk/v2.14.0-rc5/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:22:46 am (UTC+00:00)

    +

    January 19th 2025, 12:21:56 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.14.0-rc5/ghcr.io_dexidp_dex_v2.41.1.html b/docs/snyk/v2.14.0-rc5/ghcr.io_dexidp_dex_v2.41.1.html index 04817ec13d075..347b01632e9e4 100644 --- a/docs/snyk/v2.14.0-rc5/ghcr.io_dexidp_dex_v2.41.1.html +++ b/docs/snyk/v2.14.0-rc5/ghcr.io_dexidp_dex_v2.41.1.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:22:59 am (UTC+00:00)

    +

    January 19th 2025, 12:22:04 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.14.0-rc5/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html b/docs/snyk/v2.14.0-rc5/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html index 419dd5f2c1e70..d9dd9bf0652b4 100644 --- a/docs/snyk/v2.14.0-rc5/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html +++ b/docs/snyk/v2.14.0-rc5/public.ecr.aws_docker_library_haproxy_2.6.17-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:23:03 am (UTC+00:00)

    +

    January 19th 2025, 12:22:09 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.14.0-rc5/public.ecr.aws_docker_library_redis_7.0.15-alpine.html b/docs/snyk/v2.14.0-rc5/public.ecr.aws_docker_library_redis_7.0.15-alpine.html index 13ff4c09025c0..5476c483c5f54 100644 --- a/docs/snyk/v2.14.0-rc5/public.ecr.aws_docker_library_redis_7.0.15-alpine.html +++ b/docs/snyk/v2.14.0-rc5/public.ecr.aws_docker_library_redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:23:07 am (UTC+00:00)

    +

    January 19th 2025, 12:22:13 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.14.0-rc5/quay.io_argoproj_argocd_v2.14.0-rc5.html b/docs/snyk/v2.14.0-rc5/quay.io_argoproj_argocd_v2.14.0-rc5.html index a6492dc57c7b1..4b51b8b5af6b9 100644 --- a/docs/snyk/v2.14.0-rc5/quay.io_argoproj_argocd_v2.14.0-rc5.html +++ b/docs/snyk/v2.14.0-rc5/quay.io_argoproj_argocd_v2.14.0-rc5.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:23:35 am (UTC+00:00)

    +

    January 19th 2025, 12:22:38 am (UTC+00:00)

    Scanned the following paths: @@ -470,8 +470,8 @@

    Snyk test report

    -
    24 known vulnerabilities
    -
    108 vulnerable dependency paths
    +
    26 known vulnerabilities
    +
    114 vulnerable dependency paths
    2381 dependencies
    @@ -1916,6 +1916,195 @@

    References

    More about this vulnerability

    +
    +
    +

    Improper Encoding or Escaping of Output

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.14.0-rc5/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:24.04 +
      • +
    • + Vulnerable module: + + git/git-man +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.14.0-rc5, git@1:2.43.0-1ubuntu7.1 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.14.0-rc5 + + git@1:2.43.0-1ubuntu7.1 + + git/git-man@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.14.0-rc5 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.14.0-rc5 + + git-lfs@3.4.1-1ubuntu0.2 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Ubuntu. + See How to fix? for Ubuntu:24.04 relevant fixed versions and status.

    +

    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems (most notably, .NET and node.js) interpret single Carriage Return characters as newlines, which renders the protections against CVE-2020-5260 incomplete for credential helpers that treat Carriage Returns in this way. This issue has been addressed in commit b01b9b8 which is included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

    +

    Remediation

    +

    Upgrade Ubuntu:24.04 git to version 1:2.43.0-1ubuntu7.2 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    + +
    +
    +

    Improper Encoding or Escaping of Output

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.14.0-rc5/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:24.04 +
      • +
    • + Vulnerable module: + + git/git-man +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.14.0-rc5, git@1:2.43.0-1ubuntu7.1 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.14.0-rc5 + + git@1:2.43.0-1ubuntu7.1 + + git/git-man@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.14.0-rc5 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.14.0-rc5 + + git-lfs@3.4.1-1ubuntu0.2 + + git@1:2.43.0-1ubuntu7.1 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Ubuntu. + See How to fix? for Ubuntu:24.04 relevant fixed versions and status.

    +

    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker's control. This issue has been patch via commits 7725b81 and c903985 which are included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

    +

    Remediation

    +

    Upgrade Ubuntu:24.04 git to version 1:2.43.0-1ubuntu7.2 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    Release of Invalid Pointer or Reference

    diff --git a/docs/snyk/v2.14.0-rc5/redis_7.0.15-alpine.html b/docs/snyk/v2.14.0-rc5/redis_7.0.15-alpine.html index d59ed2c450238..d61d88fc01b1e 100644 --- a/docs/snyk/v2.14.0-rc5/redis_7.0.15-alpine.html +++ b/docs/snyk/v2.14.0-rc5/redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    January 12th 2025, 12:23:40 am (UTC+00:00)

    +

    January 19th 2025, 12:22:42 am (UTC+00:00)

    Scanned the following paths: