CVE
CVE
Breadcrumbs

BASE-1907: Cumulative Security Patch for eptos Release 6.1.x - 2023-11

Overview

eptos products utilizes a third-party base technology Alpine linux which is continously updated.

Summary

2023-11 Regular Security Update

Advisory Release Date


Products

eptos (All Components)

Affected Releases

eptos 6.1.*

Fixed Releases

Regular Cummulative Update 11-2023

CVE ID

CVE-2022-48174

CVE-2023-38545

CVE-2023-25330

CVE-2022-1586

CVE-2022-1587  

 CVE-2022-37434

Issue ID

.jira-issue { padding: 0 0 0 2px; line-height: 20px; } .jira-issue img { padding-right: 5px; } .jira-issue .aui-lozenge { line-height: 18px; vertical-align: top; } .jira-issue .icon { background-position: left center; background-repeat: no-repeat; display: inline-block; font-size: 0; max-height: 16px; text-align: left; text-indent: -9999em; vertical-align: text-bottom; } BASE-1907 - Getting issue details... STATUS

Further information

CVE-2016-3088 is reported false positive, see BASE-1045: Critical CVE-2016-3088 activemq-protobuf 1.1 - False Positive

CVE-2022-1586 see .jira-issue { padding: 0 0 0 2px; line-height: 20px; } .jira-issue img { padding-right: 5px; } .jira-issue .aui-lozenge { line-height: 18px; vertical-align: top; } .jira-issue .icon { background-position: left center; background-repeat: no-repeat; display: inline-block; font-size: 0; max-height: 16px; text-align: left; text-indent: -9999em; vertical-align: text-bottom; } BASE-1501 - Getting issue details... STATUS

Summary

This cumulative patch release contains:

  • eptos products utilizes a third-party base technology Alpine linux which is continuously updated. The patch release contains the newest Release of the alpine linux based on the most recent (Oct 2023).

  • Vulnerability Bug CVE-2022-1586 see .jira-issue { padding: 0 0 0 2px; line-height: 20px; } .jira-issue img { padding-right: 5px; } .jira-issue .aui-lozenge { line-height: 18px; vertical-align: top; } .jira-issue .icon { background-position: left center; background-repeat: no-repeat; display: inline-block; font-size: 0; max-height: 16px; text-align: left; text-indent: -9999em; vertical-align: text-bottom; } BASE-1501 - Getting issue details... STATUS

Software Fixes

The rebuilt images based on the most recent (Oct 2022) release of Alpine may be found in your customer image repository.

What you need to do

Update the images in your kubernetes.

Mitigation

N/A

Support

If you have questions or concerns regarding this advisory, check support (at) paradine,at and add BASE-1907 to your issue description.