feat: update POL image #308

vlenoir-bc · 2025-05-20T11:58:55Z

No description provided.

sstephanou-bc · 2025-05-21T11:59:51Z

Checkmarx One – Scan Summary & Details – 54d91cd7-857d-4c60-9574-bb207d392c7e

New Issues (3)

Checkmarx found the following issues in this Pull Request

Issue	Source File / Package	Checkmarx Insight
CVE-2025-22868	Go-golang.org/x/oauth2-v0.0.0-20211104180415-d3ed0bb246c8	details Recommended version: v0.27.0 Description: An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing. This issue affects golang.org/x/oaut... Attack Vector: NETWORK Attack Complexity: LOW `ID: yDmATSqD19O0YNS0C%2Fa6qrNto4rTwfuy1FD3FyMs2Gc%3D` Vulnerable Package
CVE-2025-22869	Go-golang.org/x/crypto-v0.9.0	details Recommended version: v0.34.1-0.20250224173925-7292932d45d5 Description: SSH servers which implement file transfer protocols are vulnerable to a Denial of Service (DoS) attack from clients which complete the key exchange... Attack Vector: NETWORK Attack Complexity: LOW `ID: 4OL%2BO9jtj1IHK9b0DxZJ5ETSaYKWDz1%2FlD8vZE41vLA%3D` Vulnerable Package
CVE-2025-22872	Go-golang.org/x/net-v0.10.0	details Recommended version: v0.38.0 Description: The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (`/`) as self-closing. When directly usi... Attack Vector: NETWORK Attack Complexity: HIGH `ID: EqMSqwq3ckXekKToLEO12tQWKQNoqzLsgIXOLKHlSXs%3D` Vulnerable Package

feat: update POL image

e570299

vlenoir-bc self-assigned this May 20, 2025

vlenoir-bc marked this pull request as ready for review May 20, 2025 11:59

vlenoir-bc requested review from a team as code owners May 20, 2025 11:59

fix: revert KAIA change

fb700aa

mbratfisch-bc approved these changes May 22, 2025

View reviewed changes

vlenoir-bc merged commit 8638713 into master May 22, 2025
1 of 2 checks passed

Provide feedback