Upstream information
Description
Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
| CNA (CISA-ADP) | SUSE | |
|---|---|---|
| Base Score | 7.5 | 5.9 |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H |
| Attack Vector | Network | Network |
| Attack Complexity | Low | High |
| Privileges Required | None | None |
| User Interaction | None | None |
| Scope | Unchanged | Unchanged |
| Confidentiality Impact | None | None |
| Integrity Impact | None | None |
| Availability Impact | High | High |
| CVSSv3 Version | 3.1 | 3.1 |
Note from the SUSE Security Team on the go1.* package
SUSE only supports the current and the previous GO language releases. SUSE Bugzilla entry: 1230253 [NEW]SUSE Security Advisories:
- RHSA-2024:6913, published Tue Sep 24 15:05:50 UTC 2024
- RHSA-2024:6946, published Wed Sep 25 15:05:39 UTC 2024
- RHSA-2024:6947, published Wed Sep 25 15:05:39 UTC 2024
- RHSA-2024:7135, published Thu Sep 26 15:05:39 UTC 2024
- RHSA-2024:7136, published Thu Sep 26 15:05:39 UTC 2024
- SUSE-SU-2024:3196-1, published Tue Sep 10 16:36:11 UTC 2024
- SUSE-SU-2024:3197-1, published Tue Sep 10 16:36:06 UTC 2024
- SUSE-SU-2024:3213-1, published Thu Sep 12 12:30:43 UTC 2024
- SUSE-SU-2024:3214-1, published Thu Sep 12 12:30:39 UTC 2024
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| Container bci/golang:1.23.1-1.36.1 |
| |
| Container bci/golang:oldstable-2.36.3 |
| |
| SUSE Liberty Linux 8 |
| Patchnames: RHSA-2024:7135 |
| SUSE Liberty Linux 9 |
| Patchnames: RHSA-2024:6913 RHSA-2024:6946 RHSA-2024:6947 RHSA-2024:7136 |
| SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Module for Development Tools 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5 |
| Patchnames: SUSE-SLE-Module-Development-Tools-15-SP5-2024-3213 SUSE-SLE-Module-Development-Tools-15-SP5-2024-3214 |
| SUSE Linux Enterprise Desktop 15 SP6 SUSE Linux Enterprise High Performance Computing 15 SP6 SUSE Linux Enterprise Module for Development Tools 15 SP6 SUSE Linux Enterprise Server 15 SP6 SUSE Linux Enterprise Server for SAP Applications 15 SP6 |
| Patchnames: SUSE-SLE-Module-Development-Tools-15-SP6-2024-3213 SUSE-SLE-Module-Development-Tools-15-SP6-2024-3214 |
| SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5 |
| Patchnames: SUSE-SLE-SDK-12-SP5-2024-3196 SUSE-SLE-SDK-12-SP5-2024-3197 |
| openSUSE Leap 15.5 |
| Patchnames: openSUSE-SLE-15.5-2024-3213 openSUSE-SLE-15.5-2024-3214 |
| openSUSE Leap 15.6 |
| Patchnames: openSUSE-SLE-15.6-2024-3213 openSUSE-SLE-15.6-2024-3214 |
| openSUSE Tumbleweed |
| Patchnames: openSUSE-Tumbleweed-2024-14323 openSUSE-Tumbleweed-2024-14324 |
Status of this issue by product and package
Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.
| Product(s) | Source package | State |
|---|---|---|
| Products under general support and receiving all security fixes. | ||
| SUSE Linux Enterprise Desktop 15 SP5 | go1.22 | Released |
| SUSE Linux Enterprise Desktop 15 SP5 | go1.23 | Released |
| SUSE Linux Enterprise Desktop 15 SP6 | go1.22 | Released |
| SUSE Linux Enterprise Desktop 15 SP6 | go1.23 | Released |
| SUSE Linux Enterprise High Performance Computing 15 SP5 | go1.22 | Released |
| SUSE Linux Enterprise High Performance Computing 15 SP5 | go1.23 | Released |
| SUSE Linux Enterprise High Performance Computing 15 SP6 | go1.22 | Released |
| SUSE Linux Enterprise High Performance Computing 15 SP6 | go1.23 | Released |
| SUSE Linux Enterprise Module for Development Tools 15 SP5 | go1.22 | Released |
| SUSE Linux Enterprise Module for Development Tools 15 SP5 | go1.23 | Released |
| SUSE Linux Enterprise Module for Development Tools 15 SP6 | go1.22 | Released |
| SUSE Linux Enterprise Module for Development Tools 15 SP6 | go1.23 | Released |
| SUSE Linux Enterprise Server 12 SP5 | go1.22 | Released |
| SUSE Linux Enterprise Server 12 SP5 | go1.23 | Released |
| SUSE Linux Enterprise Server 15 SP5 | go1.22 | Released |
| SUSE Linux Enterprise Server 15 SP5 | go1.23 | Released |
| SUSE Linux Enterprise Server 15 SP6 | go1.22 | Released |
| SUSE Linux Enterprise Server 15 SP6 | go1.23 | Released |
| SUSE Linux Enterprise Server for SAP Applications 12 SP5 | go1.22 | Released |
| SUSE Linux Enterprise Server for SAP Applications 12 SP5 | go1.23 | Released |
| SUSE Linux Enterprise Server for SAP Applications 15 SP5 | go1.22 | Released |
| SUSE Linux Enterprise Server for SAP Applications 15 SP5 | go1.23 | Released |
| SUSE Linux Enterprise Server for SAP Applications 15 SP6 | go1.22 | Released |
| SUSE Linux Enterprise Server for SAP Applications 15 SP6 | go1.23 | Released |
| SUSE Linux Enterprise Software Development Kit 12 SP5 | go1.22 | Released |
| SUSE Linux Enterprise Software Development Kit 12 SP5 | go1.23 | Released |
| openSUSE Leap 15.5 | go1.22 | Released |
| openSUSE Leap 15.5 | go1.23 | Released |
| openSUSE Leap 15.6 | go1.22 | Released |
| openSUSE Leap 15.6 | go1.23 | Released |
| Container Status | ||
| bci/golang:1.22 | go1.22 | Released |
| bci/golang | go1.22 | In progress |
| bci/golang | go1.23 | Released |
| Harvester master | ||
| rancher/rke2-runtime:v1.28.12-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/harvester-pcidevices:v0.4.0 | bin/pcidevices | Affected |
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| longhornio/csi-attacher:v4.6.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.12.0 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v4.0.1 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.11.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v7.0.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.14.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.7.1 | longhorn-share-manager | Affected |
| rancher/rancher:v2.8.5 | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/system-agent:v0.3.6-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/harvester-eventrouter:v0.3.2 | usr/bin/eventrouter | Affected |
| rancher/fleet-agent:v0.9.5 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.5 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.9.8 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/harvester-node-manager-webhook:master-head | usr/bin/harvester-node-manager-webhook | Affected |
| rancher/harvester-node-manager:master-head | usr/bin/harvester-node-manager | Affected |
| rancher/harvester-upgrade:master-head | usr/bin/kubectl usr/bin/virtctl usr/bin/wharfie usr/bin/yq | Affected |
| longhornio/support-bundle-kit:v0.0.42 rancher/support-bundle-kit:master-head | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| rancher/harvester-vm-import-controller:v0.4.0 | usr/bin/vm-import-controller | Affected |
| rancher/rancher-webhook:v0.4.7 | usr/bin/webhook | Affected |
| longhornio/backing-image-manager:v1.7.1 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.7.1 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.7.1 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| rancher/shell:v0.1.24 rancher/shell:v0.1.26 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.28.12-rke2r1-build20240717 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
| longhornio/longhorn-manager:v1.7.1 | usr/local/sbin/longhorn-manager | Affected |
| Harvester v1.2-head | ||
| rancher/harvester-seeder:v0.1.2 | bin/manager | Affected |
| rancher/harvester-pcidevices:v0.2.7 | bin/pcidevices | Affected |
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| longhornio/csi-attacher:v4.4.2 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.2 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.9.2 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.5.5 | longhorn-share-manager | Affected |
| rancher/rancher:v2.8.2 | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/system-agent:v0.3.4-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/harvester-eventrouter:v0.1.2 | usr/bin/eventrouter | Affected |
| rancher/fleet-agent:v0.9.0 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.0 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.1.96 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/harvester-load-balancer-webhook:v0.2.6 | usr/bin/harvester-load-balancer-webhook | Affected |
| rancher/harvester-load-balancer:v0.2.6 | usr/bin/harvester-load-balancer | Affected |
| rancher/harvester-network-controller:v0.3.7 | usr/bin/harvester-network-controller | Affected |
| rancher/harvester-network-helper:v0.3.7 | usr/bin/harvester-network-helper | Affected |
| rancher/harvester-network-webhook:v0.3.7 | usr/bin/harvester-network-webhook | Affected |
| rancher/harvester-node-manager:v0.1.10 | usr/bin/harvester-node-manager | Affected |
| rancher/harvester-webhook:v1.2-head | usr/bin/harvester-webhook | Affected |
| rancher/harvester:v1.2-head | usr/bin/harvester | Affected |
| rancher/harvester-upgrade:v1.2-head | usr/bin/kubectl usr/bin/virtctl usr/bin/wharfie usr/bin/yq usr/local/bin/upgrade-helper | Affected |
| rancher/harvester-node-disk-manager:v0.5.5 | usr/bin/node-disk-manager | Affected |
| longhornio/support-bundle-kit:v0.0.37 rancher/support-bundle-kit:v0.0.37 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| rancher/harvester-vm-import-controller:v0.1.8 | usr/bin/vm-import-controller | Affected |
| rancher/rancher-webhook:v0.4.2 | usr/bin/webhook | Affected |
| longhornio/backing-image-manager:v1.5.5 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.5.5 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.5.5 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| rancher/shell:v0.1.22 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| longhornio/longhorn-manager:v1.5.5 | usr/local/sbin/longhorn-manager | Affected |
| Harvester v1.2.1 | ||
| rancher/rke2-runtime:v1.25.9-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/harvester-seeder:v0.1.0 | bin/manager | Affected |
| rancher/harvester-pcidevices:v0.2.5 | bin/pcidevices | Affected |
| rancher/system-upgrade-controller:v0.11.0 | bin/system-upgrade-controller | Affected |
| longhornio/csi-attacher:v3.4.0 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.5.0 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v2.1.2 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.3.0 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v5.0.1 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.8.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.4.3 | longhorn-share-manager | Affected |
| rancher/rancher:v2.7.5 | opt/drivers/management-state/bin/docker-machine-driver-harvester usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/system-agent:v0.3.3-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/harvester-eventrouter:v0.1.1 | usr/bin/eventrouter | Affected |
| rancher/fleet-agent:v0.7.0 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.7.0 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.1.54 | usr/bin/gitjob | Affected |
| rancher/harvester-load-balancer-webhook:v0.2.1 | usr/bin/harvester-load-balancer-webhook | Affected |
| rancher/harvester-load-balancer:v0.2.1 | usr/bin/harvester-load-balancer | Affected |
| rancher/harvester-network-controller:v0.3.4 | usr/bin/harvester-network-controller | Affected |
| rancher/harvester-network-helper:v0.3.4 | usr/bin/harvester-network-helper | Affected |
| rancher/harvester-network-webhook:v0.3.4 | usr/bin/harvester-network-webhook | Affected |
| rancher/harvester-node-manager:v0.1.7 | usr/bin/harvester-node-manager | Affected |
| rancher/harvester-webhook:v1.2.1 | usr/bin/harvester-webhook | Affected |
| rancher/harvester:v1.2.1 | usr/bin/harvester | Affected |
| rancher/harvester-upgrade:v1.2.1 | usr/bin/kubectl usr/bin/virtctl usr/bin/wharfie usr/bin/yq usr/local/bin/elemental | Affected |
| rancher/harvester-node-disk-manager:v0.5.1 | usr/bin/node-disk-manager | Affected |
| longhornio/support-bundle-kit:v0.0.25 rancher/support-bundle-kit:v0.0.28 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| rancher/harvester-vm-import-controller:v0.1.5 | usr/bin/vm-import-controller | Affected |
| rancher/rancher-webhook:v0.3.5 | usr/bin/webhook | Affected |
| longhornio/backing-image-manager:v1.4.3 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.4.3 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.4.3 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| rancher/shell:v0.1.8 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl | Affected |
| rancher/shell:v0.1.18 rancher/shell:v0.1.20 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.25.9-rke2r1-build20230412 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| longhornio/longhorn-manager:v1.4.3 | usr/local/sbin/longhorn-manager | Affected |
| Harvester v1.2.2 | ||
| rancher/harvester-seeder:v0.1.2 | bin/manager | Affected |
| rancher/harvester-pcidevices:v0.2.7 | bin/pcidevices | Affected |
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| longhornio/csi-attacher:v4.4.2 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.2 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.9.2 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.5.5 | longhorn-share-manager | Affected |
| rancher/rancher:v2.8.2 | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/system-agent:v0.3.4-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/harvester-eventrouter:v0.1.2 | usr/bin/eventrouter | Affected |
| rancher/fleet-agent:v0.9.0 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.0 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.1.96 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/harvester-load-balancer-webhook:v0.2.6 | usr/bin/harvester-load-balancer-webhook | Affected |
| rancher/harvester-load-balancer:v0.2.6 | usr/bin/harvester-load-balancer | Affected |
| rancher/harvester-network-controller:v0.3.7 | usr/bin/harvester-network-controller | Affected |
| rancher/harvester-network-helper:v0.3.7 | usr/bin/harvester-network-helper | Affected |
| rancher/harvester-network-webhook:v0.3.7 | usr/bin/harvester-network-webhook | Affected |
| rancher/harvester-node-manager:v0.1.10 | usr/bin/harvester-node-manager | Affected |
| rancher/harvester-webhook:v1.2.2 | usr/bin/harvester-webhook | Affected |
| rancher/harvester:v1.2.2 | usr/bin/harvester | Affected |
| rancher/harvester-upgrade:v1.2.2 | usr/bin/kubectl usr/bin/virtctl usr/bin/wharfie usr/bin/yq usr/local/bin/upgrade-helper | Affected |
| rancher/harvester-node-disk-manager:v0.5.5 | usr/bin/node-disk-manager | Affected |
| longhornio/support-bundle-kit:v0.0.37 rancher/support-bundle-kit:v0.0.37 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| rancher/harvester-vm-import-controller:v0.1.8 | usr/bin/vm-import-controller | Affected |
| rancher/rancher-webhook:v0.4.2 | usr/bin/webhook | Affected |
| longhornio/backing-image-manager:v1.5.5 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.5.5 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.5.5 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| rancher/shell:v0.1.22 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| longhornio/longhorn-manager:v1.5.5 | usr/local/sbin/longhorn-manager | Affected |
| Harvester v1.3-head | ||
| rancher/rke2-runtime:v1.28.12-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/harvester-seeder:v0.3.2 | bin/manager | Affected |
| rancher/harvester-pcidevices:v0.3.3 | bin/pcidevices | Affected |
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| longhornio/csi-attacher:v4.5.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.4 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.10.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.4 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.6.2 | longhorn-share-manager | Affected |
| rancher/rancher:v2.8.5 | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/system-agent:v0.3.6-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/harvester-eventrouter:v0.3.2 | usr/bin/eventrouter | Affected |
| rancher/fleet-agent:v0.9.5 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.5 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.9.8 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/harvester-load-balancer-webhook:v0.3.0 | usr/bin/harvester-load-balancer-webhook | Affected |
| rancher/harvester-load-balancer:v0.3.0 | usr/bin/harvester-load-balancer | Affected |
| rancher/harvester-network-controller:v0.4.1 | usr/bin/harvester-network-controller | Affected |
| rancher/harvester-network-helper:v0.4.1 | usr/bin/harvester-network-helper | Affected |
| rancher/harvester-network-webhook:v0.4.1 | usr/bin/harvester-network-webhook | Affected |
| rancher/harvester-node-manager-webhook:v0.2.1 | usr/bin/harvester-node-manager-webhook | Affected |
| rancher/harvester-node-manager:v0.2.1 | usr/bin/harvester-node-manager | Affected |
| rancher/harvester-webhook:v1.3-head | usr/bin/harvester-webhook | Affected |
| rancher/harvester:v1.3-head | usr/bin/harvester | Affected |
| rancher/harvester-upgrade:v1.3-head | usr/bin/kubectl usr/bin/virtctl usr/bin/wharfie usr/bin/yq usr/local/bin/upgrade-helper | Affected |
| rancher/harvester-node-disk-manager:v0.6.4 | usr/bin/node-disk-manager | Affected |
| longhornio/support-bundle-kit:v0.0.37 rancher/support-bundle-kit:v0.0.38 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| rancher/harvester-vm-import-controller:v0.3.2 | usr/bin/vm-import-controller | Affected |
| rancher/rancher-webhook:v0.4.7 | usr/bin/webhook | Affected |
| longhornio/backing-image-manager:v1.6.2 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.6.2 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.6.2 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| rancher/shell:v0.1.26 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.28.12-rke2r1-build20240717 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
| longhornio/longhorn-manager:v1.6.2 | usr/local/sbin/longhorn-manager | Affected |
| Harvester v1.3.0 | ||
| rancher/rke2-runtime:v1.27.10-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/harvester-seeder:v0.1.1 | bin/manager | Affected |
| rancher/harvester-pcidevices:v0.3.2 | bin/pcidevices | Affected |
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| longhornio/csi-attacher:v4.4.2 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.2 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.9.2 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.11.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.6.0 | longhorn-share-manager | Affected |
| rancher/rancher:v2.8.2 | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/system-agent:v0.3.4-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/harvester-eventrouter:v0.1.2 | usr/bin/eventrouter | Affected |
| rancher/fleet-agent:v0.9.0 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.0 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.1.96 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/harvester-load-balancer-webhook:v0.2.5 | usr/bin/harvester-load-balancer-webhook | Affected |
| rancher/harvester-load-balancer:v0.2.5 | usr/bin/harvester-load-balancer | Affected |
| rancher/harvester-network-controller:v0.3.6 | usr/bin/harvester-network-controller | Affected |
| rancher/harvester-network-helper:v0.3.6 | usr/bin/harvester-network-helper | Affected |
| rancher/harvester-network-webhook:v0.3.6 | usr/bin/harvester-network-webhook | Affected |
| rancher/harvester-node-manager-webhook:v0.2.1 | usr/bin/harvester-node-manager-webhook | Affected |
| rancher/harvester-node-manager:v0.2.1 | usr/bin/harvester-node-manager | Affected |
| rancher/harvester-webhook:v1.3.0 | usr/bin/harvester-webhook | Affected |
| rancher/harvester:v1.3.0 | usr/bin/harvester | Affected |
| rancher/harvester-upgrade:v1.3.0 | usr/bin/kubectl usr/bin/virtctl usr/bin/wharfie usr/bin/yq usr/local/bin/upgrade-helper | Affected |
| rancher/harvester-node-disk-manager:v0.6.1 | usr/bin/node-disk-manager | Affected |
| longhornio/support-bundle-kit:v0.0.33 rancher/support-bundle-kit:v0.0.36 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| rancher/harvester-vm-import-controller:v0.1.7 | usr/bin/vm-import-controller | Affected |
| rancher/rancher-webhook:v0.4.2 | usr/bin/webhook | Affected |
| longhornio/backing-image-manager:v1.6.0 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.6.0 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.6.0 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| rancher/shell:v0.1.22 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.27.10-rke2r1-build20240117 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| longhornio/longhorn-manager:v1.6.0 | usr/local/sbin/longhorn-manager | Affected |
| Harvester v1.3.1 | ||
| rancher/harvester-seeder:v0.3.0 | bin/manager | Affected |
| rancher/harvester-pcidevices:v0.3.2 | bin/pcidevices | Affected |
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| longhornio/csi-attacher:v4.5.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.4 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.10.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.4 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.6.2 | longhorn-share-manager | Affected |
| rancher/rancher:v2.8.3 | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/system-agent:v0.3.6-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/harvester-eventrouter:v0.2.0 | usr/bin/eventrouter | Affected |
| rancher/fleet-agent:v0.9.2 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.2 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.9.4 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/harvester-load-balancer-webhook:v0.3.0 | usr/bin/harvester-load-balancer-webhook | Affected |
| rancher/harvester-load-balancer:v0.3.0 | usr/bin/harvester-load-balancer | Affected |
| rancher/harvester-network-controller:v0.4.0 | usr/bin/harvester-network-controller | Affected |
| rancher/harvester-network-helper:v0.4.0 | usr/bin/harvester-network-helper | Affected |
| rancher/harvester-network-webhook:v0.4.0 | usr/bin/harvester-network-webhook | Affected |
| rancher/harvester-node-manager-webhook:v0.2.1 | usr/bin/harvester-node-manager-webhook | Affected |
| rancher/harvester-node-manager:v0.2.1 | usr/bin/harvester-node-manager | Affected |
| rancher/harvester-webhook:v1.3.1 | usr/bin/harvester-webhook | Affected |
| rancher/harvester:v1.3.1 | usr/bin/harvester | Affected |
| rancher/harvester-upgrade:v1.3.1 | usr/bin/kubectl usr/bin/virtctl usr/bin/wharfie usr/bin/yq usr/local/bin/upgrade-helper | Affected |
| rancher/harvester-node-disk-manager:v0.6.3 | usr/bin/node-disk-manager | Affected |
| longhornio/support-bundle-kit:v0.0.37 rancher/support-bundle-kit:v0.0.38 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| rancher/harvester-vm-import-controller:v0.3.0 | usr/bin/vm-import-controller | Affected |
| rancher/rancher-webhook:v0.4.3 | usr/bin/webhook | Affected |
| longhornio/backing-image-manager:v1.6.2 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.6.2 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.6.2 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| rancher/shell:v0.1.22 rancher/shell:v0.1.23 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| longhornio/longhorn-manager:v1.6.2 | usr/local/sbin/longhorn-manager | Affected |
| Harvester v1.3.2 | ||
| rancher/rke2-runtime:v1.28.12-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/harvester-seeder:v0.3.2 | bin/manager | Affected |
| rancher/harvester-pcidevices:v0.3.3 | bin/pcidevices | Affected |
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| longhornio/csi-attacher:v4.5.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.4 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.10.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.4 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.6.2 | longhorn-share-manager | Affected |
| rancher/rancher:v2.8.5 | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/system-agent:v0.3.6-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/harvester-eventrouter:v0.2.0 | usr/bin/eventrouter | Affected |
| rancher/fleet-agent:v0.9.5 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.5 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.9.8 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/harvester-load-balancer-webhook:v0.3.0 | usr/bin/harvester-load-balancer-webhook | Affected |
| rancher/harvester-load-balancer:v0.3.0 | usr/bin/harvester-load-balancer | Affected |
| rancher/harvester-network-controller:v0.4.1 | usr/bin/harvester-network-controller | Affected |
| rancher/harvester-network-helper:v0.4.1 | usr/bin/harvester-network-helper | Affected |
| rancher/harvester-network-webhook:v0.4.1 | usr/bin/harvester-network-webhook | Affected |
| rancher/harvester-node-manager-webhook:v0.2.1 | usr/bin/harvester-node-manager-webhook | Affected |
| rancher/harvester-node-manager:v0.2.1 | usr/bin/harvester-node-manager | Affected |
| rancher/harvester-webhook:v1.3.2 | usr/bin/harvester-webhook | Affected |
| rancher/harvester:v1.3.2 | usr/bin/harvester | Affected |
| rancher/harvester-upgrade:v1.3.2 | usr/bin/kubectl usr/bin/virtctl usr/bin/wharfie usr/bin/yq usr/local/bin/upgrade-helper | Affected |
| rancher/harvester-node-disk-manager:v0.6.4 | usr/bin/node-disk-manager | Affected |
| longhornio/support-bundle-kit:v0.0.37 rancher/support-bundle-kit:v0.0.38 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| rancher/harvester-vm-import-controller:v0.3.2 | usr/bin/vm-import-controller | Affected |
| rancher/rancher-webhook:v0.4.7 | usr/bin/webhook | Affected |
| longhornio/backing-image-manager:v1.6.2 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.6.2 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.6.2 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| rancher/shell:v0.1.26 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.28.12-rke2r1-build20240717 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
| longhornio/longhorn-manager:v1.6.2 | usr/local/sbin/longhorn-manager | Affected |
| Longhorn master | ||
| longhornio/csi-attacher:v4.6.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.12.0 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v4.0.1 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.11.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v7.0.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.14.0 | livenessprobe | Affected |
| longhornio/support-bundle-kit:v0.0.43 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/longhorn-engine:master-head longhornio/longhorn-instance-manager:master-head | usr/local/bin/grpc_health_probe | Affected |
| Longhorn v1.5-head | ||
| longhornio/csi-attacher:v4.5.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.4 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.10.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.4 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.5.5 | longhorn-share-manager | Affected |
| longhornio/support-bundle-kit:v0.0.40 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/backing-image-manager:v1.5.5 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.5.5 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.5.5 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-manager:v1.5.5 | usr/local/sbin/longhorn-manager | Affected |
| Longhorn v1.5.3 | ||
| longhornio/csi-attacher:v4.2.0 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.7.0 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.4.1 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.7.0 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.2.1 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.9.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.5.3 | longhorn-share-manager | Affected |
| longhornio/support-bundle-kit:v0.0.27 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/backing-image-manager:v1.5.3 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.5.3 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.5.3 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-manager:v1.5.3 | usr/local/sbin/longhorn-manager | Affected |
| Longhorn v1.5.4 | ||
| longhornio/csi-attacher:v4.4.2 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.2 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.9.2 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.5.4 | longhorn-share-manager | Affected |
| longhornio/support-bundle-kit:v0.0.33 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/backing-image-manager:v1.5.4 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.5.4 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.5.4 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-manager:v1.5.4 | usr/local/sbin/longhorn-manager | Affected |
| Longhorn v1.5.5 | ||
| longhornio/csi-attacher:v4.4.2 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.2 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.9.2 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.5.5 | longhorn-share-manager | Affected |
| longhornio/support-bundle-kit:v0.0.37 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/backing-image-manager:v1.5.5 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.5.5 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.5.5 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-manager:v1.5.5 | usr/local/sbin/longhorn-manager | Affected |
| Longhorn v1.6-head | ||
| longhornio/csi-attacher:v4.7.0 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.12.0 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.4 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.12.0 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.4 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.14.0 | livenessprobe | Affected |
| longhornio/support-bundle-kit:v0.0.43 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/longhorn-engine:v1.6.3 longhornio/longhorn-instance-manager:v1.6.3 | usr/local/bin/grpc_health_probe | Affected |
| Longhorn v1.6.1 | ||
| longhornio/csi-attacher:v4.4.2 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.2 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.9.2 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.6.1 | longhorn-share-manager | Affected |
| longhornio/support-bundle-kit:v0.0.36 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/backing-image-manager:v1.6.1 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.6.1 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.6.1 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-manager:v1.6.1 | usr/local/sbin/longhorn-manager | Affected |
| Longhorn v1.6.2 | ||
| longhornio/csi-attacher:v4.5.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.9.2 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v3.6.4 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.10.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v6.3.4 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.12.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.6.2 | longhorn-share-manager | Affected |
| longhornio/support-bundle-kit:v0.0.37 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/backing-image-manager:v1.6.2 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.6.2 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.6.2 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-manager:v1.6.2 | usr/local/sbin/longhorn-manager | Affected |
| Longhorn v1.7-head | ||
| longhornio/csi-attacher:v4.6.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.12.0 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v4.0.1 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.11.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v7.0.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.14.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.7.1 | longhorn-share-manager | Affected |
| longhornio/support-bundle-kit:v0.0.43 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/backing-image-manager:v1.7.1 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.7.1 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.7.1 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-manager:v1.7.1 | usr/local/sbin/longhorn-manager | Affected |
| Longhorn v1.7.1 | ||
| longhornio/csi-attacher:v4.6.1 | csi-attacher | Affected |
| longhornio/csi-node-driver-registrar:v2.12.0 | csi-node-driver-registrar | Affected |
| longhornio/csi-provisioner:v4.0.1 | csi-provisioner | Affected |
| longhornio/csi-resizer:v1.11.1 | csi-resizer | Affected |
| longhornio/csi-snapshotter:v7.0.2 | csi-snapshotter | Affected |
| longhornio/livenessprobe:v2.14.0 | livenessprobe | Affected |
| longhornio/longhorn-share-manager:v1.7.1 | longhorn-share-manager | Affected |
| longhornio/support-bundle-kit:v0.0.42 | usr/bin/support-bundle-kit usr/bin/yq | Affected |
| longhornio/backing-image-manager:v1.7.1 | usr/local/bin/backing-image-manager | Affected |
| longhornio/longhorn-instance-manager:v1.7.1 | usr/local/bin/go-spdk-helper usr/local/bin/grpc_health_probe usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-engine:v1.7.1 | usr/local/bin/grpc_health_probe usr/local/bin/longhorn usr/local/bin/longhorn-instance-manager | Affected |
| longhornio/longhorn-manager:v1.7.1 | usr/local/sbin/longhorn-manager | Affected |
| Rancher v2.7-head | ||
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| rancher/nginx-ingress-controller:nginx-1.9.4-rancher1 rancher/nginx-ingress-controller:v1.10.4-hardened2 | dbg nginx-ingress-controller wait-shutdown | Affected |
| rancher/rancher:v2.7-head | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/k3s-upgrade:v1.27.16-k3s1 | opt/k3s | Affected |
| rancher/system-agent:v0.3.6-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.100 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tap tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.96 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke2-upgrade:v1.27.16-rke2r2 | opt/rke2 usr/local/bin/kubectl | Affected |
| rancher/rancher-agent:v2.7-head | usr/bin/agent usr/bin/kubectl usr/bin/loglevel | Affected |
| rancher/aks-operator:v1.1.4 | usr/bin/aks-operator | Affected |
| rancher/backup-restore-operator:v3.1.4 | usr/bin/backup-restore-operator | Affected |
| rancher/cis-operator:v1.0.14-rc4 | usr/bin/cis-operator | Affected |
| rancher/rancher-csp-adapter:v2.0.4 | usr/bin/csp-adapter | Affected |
| rancher/eks-operator:v1.2.3 | usr/bin/eks-operator | Affected |
| rancher/fleet-agent:v0.8.6-rc.4 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.8.6-rc.4 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.8.12 | usr/bin/gitjob | Affected |
| rancher/gke-operator:v1.1.7 | usr/bin/gke-operator | Affected |
| rancher/security-scan:v0.2.17-rc8 | usr/bin/kb-summarizer usr/bin/kube-bench usr/bin/sonobuoy usr/local/bin/kubectl | Affected |
| rancher/ui-plugin-operator:v0.1.1 | usr/bin/ui-plugin-operator | Affected |
| rancher/rancher-webhook:v0.3.12-rc1 | usr/bin/webhook | Affected |
| rancher/shell:v0.1.25 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.27.16-rke2r2-build20240819 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/hyperkube:v1.27.16-rancher1 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/machine:v0.15.0-rancher109 | usr/local/bin/rancher-machine | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
| Rancher v2.7.15 | ||
| rancher/rke2-runtime:v1.27.15-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/system-upgrade-controller:v0.13.1 | bin/system-upgrade-controller | Affected |
| rancher/nginx-ingress-controller:nginx-1.9.4-rancher1 | dbg nginx-ingress-controller wait-shutdown | Affected |
| rancher/k3s-upgrade:v1.27.15-k3s2 | opt/k3s | Affected |
| rancher/system-agent:v0.3.6-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.100 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tap tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.96 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke2-upgrade:v1.27.15-rke2r1 | opt/rke2 usr/local/bin/kubectl | Affected |
| rancher/aks-operator:v1.1.4 | usr/bin/aks-operator | Affected |
| rancher/backup-restore-operator:v3.1.4 | usr/bin/backup-restore-operator | Affected |
| rancher/cis-operator:v1.0.13 | usr/bin/cis-operator | Affected |
| rancher/rancher-csp-adapter:v2.0.4 | usr/bin/csp-adapter | Affected |
| rancher/eks-operator:v1.2.3 | usr/bin/eks-operator | Affected |
| rancher/fleet-agent:v0.8.5 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.8.5 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.8.8 | usr/bin/gitjob | Affected |
| rancher/gke-operator:v1.1.7 | usr/bin/gke-operator | Affected |
| rancher/security-scan:v0.2.15 | usr/bin/kb-summarizer usr/bin/kube-bench usr/bin/sonobuoy usr/local/bin/kubectl | Affected |
| rancher/ui-plugin-operator:v0.1.1 | usr/bin/ui-plugin-operator | Affected |
| rancher/rancher-webhook:v0.3.11 | usr/bin/webhook | Affected |
| rancher/shell:v0.1.24 rancher/shell:v0.1.25 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.27.15-rke2r1-build20240619 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/hyperkube:v1.27.15-rancher1 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/machine:v0.15.0-rancher109 | usr/local/bin/rancher-machine | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
| Rancher v2.8-head | ||
| rancher/rke2-runtime:v1.28.13-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/system-upgrade-controller:v0.13.4 | bin/system-upgrade-controller | Affected |
| rancher/nginx-ingress-controller:nginx-1.11.2-rancher1 rancher/nginx-ingress-controller:nginx-1.9.4-rancher1 rancher/nginx-ingress-controller:v1.10.4-hardened2 | dbg nginx-ingress-controller wait-shutdown | Affected |
| rancher/rancher:v2.8-head | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry usr/share/rancher/ui/assets/docker-machine-driver-harvester usr/share/rancher/ui/assets/docker-machine-driver-linode usr/share/rancher/ui/assets/wins.exe | Affected |
| rancher/k3s-upgrade:v1.27.16-k3s1 rancher/k3s-upgrade:v1.28.14-k3s1 | opt/k3s | Affected |
| rancher/system-agent:v0.3.9-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.100 rancher/rke-tools:v0.1.102 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tap tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.96 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke2-upgrade:v1.27.16-rke2r2 rancher/rke2-upgrade:v1.28.13-rke2r1 | opt/rke2 usr/local/bin/kubectl | Affected |
| rancher/rancher-agent:v2.8-head | usr/bin/agent usr/bin/kubectl usr/bin/loglevel | Affected |
| rancher/backup-restore-operator:v4.0.3 | usr/bin/backup-restore-operator | Affected |
| rancher/cis-operator:v1.0.15 | usr/bin/cis-operator | Affected |
| rancher/rancher-csp-adapter:v3.0.1 | usr/bin/csp-adapter | Affected |
| rancher/fleet-agent:v0.9.10-rc.2 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.10-rc.2 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.9.15 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/security-scan:v0.2.17 | usr/bin/kb-summarizer usr/bin/kube-bench usr/bin/sonobuoy usr/local/bin/kubectl | Affected |
| rancher/shell:v0.1.25 rancher/shell:v0.1.26 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.27.16-rke2r2-build20240819 rancher/hardened-kubernetes:v1.28.13-rke2r1-build20240815 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/hyperkube:v1.27.16-rancher1 rancher/hyperkube:v1.28.13-rancher1 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/machine:v0.15.0-rancher118 | usr/local/bin/rancher-machine | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
| Rancher v2.8.8 | ||
| rancher/rke2-runtime:v1.28.13-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/system-upgrade-controller:v0.13.4 | bin/system-upgrade-controller | Affected |
| rancher/nginx-ingress-controller:nginx-1.11.2-rancher1 rancher/nginx-ingress-controller:nginx-1.9.4-rancher1 rancher/nginx-ingress-controller:v1.10.4-hardened2 | dbg nginx-ingress-controller wait-shutdown | Affected |
| rancher/k3s-upgrade:v1.27.16-k3s1 rancher/k3s-upgrade:v1.28.13-k3s1 | opt/k3s | Affected |
| rancher/system-agent:v0.3.9-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.100 rancher/rke-tools:v0.1.102 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tap tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.96 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke2-upgrade:v1.27.16-rke2r2 rancher/rke2-upgrade:v1.28.13-rke2r1 | opt/rke2 usr/local/bin/kubectl | Affected |
| rancher/backup-restore-operator:v4.0.3 | usr/bin/backup-restore-operator | Affected |
| rancher/cis-operator:v1.0.15 | usr/bin/cis-operator | Affected |
| rancher/rancher-csp-adapter:v3.0.1 | usr/bin/csp-adapter | Affected |
| rancher/fleet-agent:v0.9.9 | usr/bin/fleet usr/bin/fleetagent | Affected |
| rancher/fleet:v0.9.9 | usr/bin/fleetcontroller | Affected |
| rancher/gitjob:v0.9.13 | usr/bin/gitcloner usr/bin/gitjob | Affected |
| rancher/security-scan:v0.2.17 | usr/bin/kb-summarizer usr/bin/kube-bench usr/bin/sonobuoy usr/local/bin/kubectl | Affected |
| rancher/ui-plugin-operator:v0.1.1 | usr/bin/ui-plugin-operator | Affected |
| rancher/shell:v0.1.25 rancher/shell:v0.1.26 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.27.16-rke2r2-build20240819 rancher/hardened-kubernetes:v1.28.13-rke2r1-build20240815 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/hyperkube:v1.27.16-rancher1 rancher/hyperkube:v1.28.13-rancher1 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/machine:v0.15.0-rancher116 | usr/local/bin/rancher-machine | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
| Rancher v2.9-head | ||
| rancher/rke2-runtime:v1.28.13-rke2r1 rancher/rke2-runtime:v1.29.8-rke2r1 rancher/rke2-runtime:v1.30.4-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/system-upgrade-controller:v0.13.4 | bin/system-upgrade-controller | Affected |
| rancher/nginx-ingress-controller:nginx-1.11.2-rancher1 rancher/nginx-ingress-controller:nginx-1.9.4-rancher1 rancher/nginx-ingress-controller:v1.10.4-hardened2 | dbg nginx-ingress-controller wait-shutdown | Affected |
| rancher/rancher:v2.9-head | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry | Affected |
| rancher/k3s-upgrade:v1.27.16-k3s1 rancher/k3s-upgrade:v1.28.14-k3s1 rancher/k3s-upgrade:v1.29.9-k3s1 rancher/k3s-upgrade:v1.30.5-k3s1 | opt/k3s | Affected |
| rancher/system-agent:v0.3.9-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.100 rancher/rke-tools:v0.1.102 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tap tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke2-upgrade:v1.27.16-rke2r2 rancher/rke2-upgrade:v1.28.13-rke2r1 rancher/rke2-upgrade:v1.29.8-rke2r1 rancher/rke2-upgrade:v1.30.4-rke2r1 | opt/rke2 usr/local/bin/kubectl | Affected |
| rancher/backup-restore-operator:v5.0.1 | usr/bin/backup-restore-operator | Affected |
| rancher/cis-operator:v1.0.15 | usr/bin/cis-operator | Affected |
| rancher/rancher-csp-adapter:v4.0.0 | usr/bin/csp-adapter | Affected |
| rancher/security-scan:v0.2.17 | usr/bin/kb-summarizer usr/bin/kube-bench usr/bin/sonobuoy usr/local/bin/kubectl | Affected |
| rancher/rancher-agent:v2.9-head | usr/bin/kubectl usr/bin/loglevel | Affected |
| rancher/shell:v0.1.19 rancher/shell:v0.2.1 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/shell:v0.2.2-rc.2 | usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.27.16-rke2r2-build20240819 rancher/hardened-kubernetes:v1.28.13-rke2r1-build20240815 rancher/hardened-kubernetes:v1.29.8-rke2r1-build20240815 rancher/hardened-kubernetes:v1.30.4-rke2r1-build20240815 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/hyperkube:v1.27.16-rancher1 rancher/hyperkube:v1.28.13-rancher1 rancher/hyperkube:v1.29.8-rancher1 rancher/hyperkube:v1.30.4-rancher1 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/machine:v0.15.0-rancher118 | usr/local/bin/rancher-machine | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
| Rancher v2.9.2 | ||
| rancher/rke2-runtime:v1.28.13-rke2r1 rancher/rke2-runtime:v1.29.8-rke2r1 rancher/rke2-runtime:v1.30.4-rke2r1 | bin/containerd bin/containerd-shim bin/containerd-shim-runc-v1 bin/containerd-shim-runc-v2 bin/crictl bin/ctr bin/kubectl bin/kubelet bin/runc | Affected |
| rancher/system-upgrade-controller:v0.13.4 | bin/system-upgrade-controller | Affected |
| rancher/nginx-ingress-controller:nginx-1.11.2-rancher1 rancher/nginx-ingress-controller:nginx-1.9.4-rancher1 rancher/nginx-ingress-controller:v1.10.4-hardened2 | dbg nginx-ingress-controller wait-shutdown | Affected |
| rancher/rancher:v2.9.2 | opt/drivers/management-state/bin/docker-machine-driver-harvester opt/drivers/management-state/bin/docker-machine-driver-linode usr/bin/bandwidth usr/bin/cni usr/bin/containerd usr/bin/containerd-shim-runc-v2 usr/bin/etcdctl usr/bin/firewall usr/bin/helm_v3 usr/bin/k3s usr/bin/kustomize usr/bin/loglevel usr/bin/rancher-machine usr/bin/runc usr/bin/telemetry | Affected |
| rancher/k3s-upgrade:v1.27.16-k3s1 rancher/k3s-upgrade:v1.28.13-k3s1 rancher/k3s-upgrade:v1.29.8-k3s1 rancher/k3s-upgrade:v1.30.4-k3s1 | opt/k3s | Affected |
| rancher/system-agent:v0.3.9-suc | opt/rancher-system-agent-suc/rancher-system-agent usr/bin/kubectl | Affected |
| rancher/rke-tools:v0.1.100 rancher/rke-tools:v0.1.102 | opt/rke-tools/bin/cri-dockerd opt/rke-tools/bin/docker opt/rke-tools/rke-etcd-backup tmp/bandwidth tmp/bridge tmp/dhcp tmp/dummy tmp/firewall tmp/flannel tmp/host-device tmp/host-local tmp/ipvlan tmp/loopback tmp/macvlan tmp/portmap tmp/ptp tmp/sbr tmp/static tmp/tap tmp/tuning tmp/vlan tmp/vrf usr/bin/confd usr/local/bin/etcdctl usr/local/bin/kubectl | Affected |
| rancher/rke2-upgrade:v1.27.16-rke2r2 rancher/rke2-upgrade:v1.28.13-rke2r1 rancher/rke2-upgrade:v1.29.8-rke2r1 rancher/rke2-upgrade:v1.30.4-rke2r1 | opt/rke2 usr/local/bin/kubectl | Affected |
| rancher/backup-restore-operator:v5.0.1 | usr/bin/backup-restore-operator | Affected |
| rancher/cis-operator:v1.0.15 | usr/bin/cis-operator | Affected |
| rancher/rancher-csp-adapter:v4.0.0 | usr/bin/csp-adapter | Affected |
| rancher/security-scan:v0.2.17 | usr/bin/kb-summarizer usr/bin/kube-bench usr/bin/sonobuoy usr/local/bin/kubectl | Affected |
| rancher/rancher-agent:v2.9.2 | usr/bin/kubectl usr/bin/loglevel | Affected |
| rancher/shell:v0.1.19 rancher/shell:v0.2.1 | usr/local/bin/helm usr/local/bin/k9s usr/local/bin/kubectl usr/local/bin/kustomize | Affected |
| rancher/hardened-kubernetes:v1.27.16-rke2r2-build20240819 rancher/hardened-kubernetes:v1.28.13-rke2r1-build20240815 rancher/hardened-kubernetes:v1.29.8-rke2r1-build20240815 rancher/hardened-kubernetes:v1.30.4-rke2r1-build20240815 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubeadm usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/hyperkube:v1.27.16-rancher1 rancher/hyperkube:v1.28.13-rancher1 rancher/hyperkube:v1.29.8-rancher1 rancher/hyperkube:v1.30.4-rancher1 | usr/local/bin/kube-apiserver usr/local/bin/kube-controller-manager usr/local/bin/kube-proxy usr/local/bin/kube-scheduler usr/local/bin/kubectl usr/local/bin/kubelet | Affected |
| rancher/machine:v0.15.0-rancher116 | usr/local/bin/rancher-machine | Affected |
| rancher/rke2-cloud-provider:v1.29.3-build20240515 | usr/local/bin/rke2-cloud-provider | Affected |
SUSE Timeline for this CVE
CVE page created: Thu Sep 5 21:00:10 2024CVE page last modified: Thu Sep 26 19:48:21 2024