Skip to content

Commit ecea17d

Browse files
[auto-ray-cve-patch] allowlist 3 forced-class HIGH CVEs blocking ray auto-release
Ray 2.55.1 auto-release ecr-vulnerability-scan gate was blocked by 3 non-allowlisted HIGH CVEs across all sagemaker/ec2 cpu/gpu variants. All three are forced-allowlist classes (no in-image bump available): - CVE-2026-57516: ray 2.55.1->2.56.0 (WebDataset RCE). ray[serve] is an exact autorelease-managed pin (core contract); needs a Ray version bump. - CVE-2026-54277: aiohttp 3.13.5->3.14.1. Vendored in ray thirdparty_files; matches 8 existing aiohttp allowlist entries. - RUSTSEC-2026-0195: quick-xml 0.39.2->0.41.0. Vendored in the uv binary; fix not shipped in any stable uv release (latest 0.11.26 still 0.39.2). Signed-off-by: Jyothirmai Kottu <jkottu@amazon.com>
1 parent 135141a commit ecea17d

1 file changed

Lines changed: 15 additions & 0 deletions

File tree

test/security/data/ecr_scan_allowlist/ray/framework_allowlist.json

Lines changed: 15 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -78,5 +78,20 @@
7878
"vulnerability_id": "CVE-2026-54275",
7979
"reason": "aiohttp 3.13.5 bundled inside ray/_private/runtime_env/agent/thirdparty_files/, cannot patch without upstream ray release",
8080
"review_by": "2026-09-29"
81+
},
82+
{
83+
"vulnerability_id": "CVE-2026-57516",
84+
"reason": "ray[serve]==2.55.1 exact pin (autorelease-managed core contract); fix in ray 2.56.0 needs a Ray version bump",
85+
"review_by": "2027-01-02"
86+
},
87+
{
88+
"vulnerability_id": "CVE-2026-54277",
89+
"reason": "aiohttp 3.13.5 bundled inside ray/_private/runtime_env/agent/thirdparty_files/, cannot patch without upstream ray release",
90+
"review_by": "2026-10-04"
91+
},
92+
{
93+
"vulnerability_id": "RUSTSEC-2026-0195",
94+
"reason": "quick-xml 0.39.2 vendored in the uv binary; fix (0.41.0) not shipped in any stable uv release (latest 0.11.26 still ships 0.39.2)",
95+
"review_by": "2026-10-04"
8196
}
8297
]

0 commit comments

Comments
 (0)