Update CVE scans reports - 2025-11-23

Author: rancher-security-team[bot]

docs/csv/report-harvester-master-cves.csv

@@ -704,8 +704,6 @@ rancher/mirrored-kube-logging-config-reloader:v0.0.6,harvester/master,stdlib,v1.
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/master,ruby,3.3.6-r0,alpine,CVE-2025-27219,HIGH,https://avd.aquasec.com/nvd/cve-2025-27219,rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full (alpine 3.20.3),3.3.8-r0,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/master,ruby-libs,3.3.6-r0,alpine,CVE-2025-27219,HIGH,https://avd.aquasec.com/nvd/cve-2025-27219,rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full (alpine 3.20.3),3.3.8-r0,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/master,google-protobuf,3.21.12,gemspec,CVE-2024-7254,HIGH,https://avd.aquasec.com/nvd/cve-2024-7254,Ruby,"~> 3.25.5, ~> 4.27.5, >= 4.28.2",true,affected,
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/master,net-imap,0.3.4.1,gemspec,CVE-2025-43857,HIGH,https://avd.aquasec.com/nvd/cve-2025-43857,Ruby,"~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7",true,affected,
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/master,net-imap,0.4.19,gemspec,CVE-2025-43857,HIGH,https://avd.aquasec.com/nvd/cve-2025-43857,Ruby,"~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7",true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/master,nokogiri,1.18.4,gemspec,GHSA-353f-x4gh-cqq8,CRITICAL,https://github.com/advisories/GHSA-353f-x4gh-cqq8,Ruby,>= 1.18.9,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/master,rack,3.0.14,gemspec,CVE-2025-46727,HIGH,https://avd.aquasec.com/nvd/cve-2025-46727,Ruby,"~> 2.2.14, ~> 3.0.16, >= 3.1.14",true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/master,rack,3.0.14,gemspec,CVE-2025-61770,HIGH,https://avd.aquasec.com/nvd/cve-2025-61770,Ruby,"~> 2.2.19, ~> 3.1.17, >= 3.2.2",true,affected,

docs/csv/report-harvester-master-stats.csv

@@ -64,7 +64,7 @@ rancher/mirrored-grafana-grafana:11.5.5,0,10,10
 rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.2,0,2,2
 rancher/mirrored-kiwigrid-k8s-sidecar:1.30.0,2,5,7
 rancher/mirrored-kube-logging-config-reloader:v0.0.6,0,3,3
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,1,13,14
+rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,1,11,12
 rancher/mirrored-kube-logging-logging-operator:4.10.0,0,2,2
 rancher/mirrored-kube-state-metrics-kube-state-metrics:v2.15.0,0,4,4
 rancher/mirrored-library-busybox:1.37.0,0,0,0

docs/csv/report-harvester-v1.4-head-cves.csv

@@ -83,7 +83,6 @@ ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4-head,libssl3,3.0.10-r0,a
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4-head,libssl3,3.0.10-r0,alpine,CVE-2024-6119,HIGH,https://avd.aquasec.com/nvd/cve-2024-6119,ghcr.io/kube-logging/fluentd:v1.15-ruby3 (alpine 3.17.5),3.0.15-r0,false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4-head,nghttp2-libs,1.51.0-r1,alpine,CVE-2023-44487,HIGH,https://avd.aquasec.com/nvd/cve-2023-44487,ghcr.io/kube-logging/fluentd:v1.15-ruby3 (alpine 3.17.5),1.51.0-r2,false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4-head,google-protobuf,3.24.3,gemspec,CVE-2024-7254,HIGH,https://avd.aquasec.com/nvd/cve-2024-7254,Ruby,"~> 3.25.5, ~> 4.27.5, >= 4.28.2",false,affected,
-ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4-head,net-imap,0.3.7,gemspec,CVE-2025-43857,HIGH,https://avd.aquasec.com/nvd/cve-2025-43857,Ruby,"~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7",false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4-head,nokogiri,1.15.4,gemspec,GHSA-353f-x4gh-cqq8,CRITICAL,https://github.com/advisories/GHSA-353f-x4gh-cqq8,Ruby,>= 1.18.9,false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4-head,nokogiri,1.15.4,gemspec,GHSA-mrxw-mxhj-p664,HIGH,https://github.com/advisories/GHSA-mrxw-mxhj-p664,Ruby,>= 1.18.4,false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4-head,rack,3.0.8,gemspec,CVE-2024-26141,HIGH,https://avd.aquasec.com/nvd/cve-2024-26141,Ruby,"~> 2.2.8, >= 2.2.8.1, >= 3.0.9.1",false,affected,

docs/csv/report-harvester-v1.4-head-stats.csv

@@ -2,7 +2,7 @@ image,critical,high,total
 fluent/fluent-bit:2.1.8,5,25,30
 ghcr.io/k8snetworkplumbingwg/whereabouts:v0.7.0,0,8,8
 ghcr.io/kube-logging/config-reloader:v0.0.5,0,12,12
-ghcr.io/kube-logging/fluentd:v1.15-ruby3,3,26,29
+ghcr.io/kube-logging/fluentd:v1.15-ruby3,3,25,28
 ghcr.io/kube-vip/kube-vip-iptables:v0.8.1,0,7,7
 longhornio/backing-image-manager:v1.7.3,0,38,38
 longhornio/csi-attacher:v4.8.0,0,2,2

docs/csv/report-harvester-v1.4.3-cves.csv

@@ -83,7 +83,6 @@ ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4.3,libssl3,3.0.10-r0,alpi
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4.3,libssl3,3.0.10-r0,alpine,CVE-2024-6119,HIGH,https://avd.aquasec.com/nvd/cve-2024-6119,ghcr.io/kube-logging/fluentd:v1.15-ruby3 (alpine 3.17.5),3.0.15-r0,false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4.3,nghttp2-libs,1.51.0-r1,alpine,CVE-2023-44487,HIGH,https://avd.aquasec.com/nvd/cve-2023-44487,ghcr.io/kube-logging/fluentd:v1.15-ruby3 (alpine 3.17.5),1.51.0-r2,false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4.3,google-protobuf,3.24.3,gemspec,CVE-2024-7254,HIGH,https://avd.aquasec.com/nvd/cve-2024-7254,Ruby,"~> 3.25.5, ~> 4.27.5, >= 4.28.2",false,affected,
-ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4.3,net-imap,0.3.7,gemspec,CVE-2025-43857,HIGH,https://avd.aquasec.com/nvd/cve-2025-43857,Ruby,"~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7",false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4.3,nokogiri,1.15.4,gemspec,GHSA-353f-x4gh-cqq8,CRITICAL,https://github.com/advisories/GHSA-353f-x4gh-cqq8,Ruby,>= 1.18.9,false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4.3,nokogiri,1.15.4,gemspec,GHSA-mrxw-mxhj-p664,HIGH,https://github.com/advisories/GHSA-mrxw-mxhj-p664,Ruby,>= 1.18.4,false,affected,
 ghcr.io/kube-logging/fluentd:v1.15-ruby3,harvester/v1.4.3,rack,3.0.8,gemspec,CVE-2024-26141,HIGH,https://avd.aquasec.com/nvd/cve-2024-26141,Ruby,"~> 2.2.8, >= 2.2.8.1, >= 3.0.9.1",false,affected,

docs/csv/report-harvester-v1.4.3-stats.csv

@@ -2,7 +2,7 @@ image,critical,high,total
 fluent/fluent-bit:2.1.8,5,25,30
 ghcr.io/k8snetworkplumbingwg/whereabouts:v0.7.0,0,8,8
 ghcr.io/kube-logging/config-reloader:v0.0.5,0,12,12
-ghcr.io/kube-logging/fluentd:v1.15-ruby3,3,26,29
+ghcr.io/kube-logging/fluentd:v1.15-ruby3,3,25,28
 ghcr.io/kube-vip/kube-vip-iptables:v0.8.1,0,7,7
 longhornio/backing-image-manager:v1.7.3,0,38,38
 longhornio/csi-attacher:v4.8.0,0,2,2

docs/csv/report-harvester-v1.5-head-cves.csv

@@ -1500,8 +1500,6 @@ rancher/mirrored-kube-logging-config-reloader:v0.0.6,harvester/v1.5-head,stdlib,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5-head,ruby,3.3.6-r0,alpine,CVE-2025-27219,HIGH,https://avd.aquasec.com/nvd/cve-2025-27219,rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full (alpine 3.20.3),3.3.8-r0,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5-head,ruby-libs,3.3.6-r0,alpine,CVE-2025-27219,HIGH,https://avd.aquasec.com/nvd/cve-2025-27219,rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full (alpine 3.20.3),3.3.8-r0,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5-head,google-protobuf,3.21.12,gemspec,CVE-2024-7254,HIGH,https://avd.aquasec.com/nvd/cve-2024-7254,Ruby,"~> 3.25.5, ~> 4.27.5, >= 4.28.2",true,affected,
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5-head,net-imap,0.3.4.1,gemspec,CVE-2025-43857,HIGH,https://avd.aquasec.com/nvd/cve-2025-43857,Ruby,"~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7",true,affected,
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5-head,net-imap,0.4.19,gemspec,CVE-2025-43857,HIGH,https://avd.aquasec.com/nvd/cve-2025-43857,Ruby,"~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7",true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5-head,nokogiri,1.18.4,gemspec,GHSA-353f-x4gh-cqq8,CRITICAL,https://github.com/advisories/GHSA-353f-x4gh-cqq8,Ruby,>= 1.18.9,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5-head,rack,3.0.14,gemspec,CVE-2025-46727,HIGH,https://avd.aquasec.com/nvd/cve-2025-46727,Ruby,"~> 2.2.14, ~> 3.0.16, >= 3.1.14",true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5-head,rack,3.0.14,gemspec,CVE-2025-61770,HIGH,https://avd.aquasec.com/nvd/cve-2025-61770,Ruby,"~> 2.2.19, ~> 3.1.17, >= 3.2.2",true,affected,

docs/csv/report-harvester-v1.5-head-stats.csv

@@ -58,7 +58,7 @@ rancher/mirrored-grafana-grafana:11.1.0,0,14,14
 rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.0,0,2,2
 rancher/mirrored-kiwigrid-k8s-sidecar:1.27.4,2,10,12
 rancher/mirrored-kube-logging-config-reloader:v0.0.6,0,3,3
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,1,13,14
+rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,1,11,12
 rancher/mirrored-kube-logging-logging-operator:4.10.0,0,2,2
 rancher/mirrored-kube-state-metrics-kube-state-metrics:v2.12.0,0,5,5
 rancher/mirrored-library-busybox:1.31.1,0,0,0

docs/csv/report-harvester-v1.5.2-cves.csv

@@ -1500,8 +1500,6 @@ rancher/mirrored-kube-logging-config-reloader:v0.0.6,harvester/v1.5.2,stdlib,v1.
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5.2,ruby,3.3.6-r0,alpine,CVE-2025-27219,HIGH,https://avd.aquasec.com/nvd/cve-2025-27219,rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full (alpine 3.20.3),3.3.8-r0,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5.2,ruby-libs,3.3.6-r0,alpine,CVE-2025-27219,HIGH,https://avd.aquasec.com/nvd/cve-2025-27219,rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full (alpine 3.20.3),3.3.8-r0,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5.2,google-protobuf,3.21.12,gemspec,CVE-2024-7254,HIGH,https://avd.aquasec.com/nvd/cve-2024-7254,Ruby,"~> 3.25.5, ~> 4.27.5, >= 4.28.2",true,affected,
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5.2,net-imap,0.3.4.1,gemspec,CVE-2025-43857,HIGH,https://avd.aquasec.com/nvd/cve-2025-43857,Ruby,"~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7",true,affected,
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5.2,net-imap,0.4.19,gemspec,CVE-2025-43857,HIGH,https://avd.aquasec.com/nvd/cve-2025-43857,Ruby,"~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7",true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5.2,nokogiri,1.18.4,gemspec,GHSA-353f-x4gh-cqq8,CRITICAL,https://github.com/advisories/GHSA-353f-x4gh-cqq8,Ruby,>= 1.18.9,true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5.2,rack,3.0.14,gemspec,CVE-2025-46727,HIGH,https://avd.aquasec.com/nvd/cve-2025-46727,Ruby,"~> 2.2.14, ~> 3.0.16, >= 3.1.14",true,affected,
 rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,harvester/v1.5.2,rack,3.0.14,gemspec,CVE-2025-61770,HIGH,https://avd.aquasec.com/nvd/cve-2025-61770,Ruby,"~> 2.2.19, ~> 3.1.17, >= 3.2.2",true,affected,

docs/csv/report-harvester-v1.5.2-stats.csv

@@ -58,7 +58,7 @@ rancher/mirrored-grafana-grafana:11.1.0,0,14,14
 rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.0,0,2,2
 rancher/mirrored-kiwigrid-k8s-sidecar:1.27.4,2,10,12
 rancher/mirrored-kube-logging-config-reloader:v0.0.6,0,3,3
-rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,1,13,14
+rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full,1,11,12
 rancher/mirrored-kube-logging-logging-operator:4.10.0,0,2,2
 rancher/mirrored-kube-state-metrics-kube-state-metrics:v2.12.0,0,5,5
 rancher/mirrored-library-busybox:1.31.1,0,0,0