Groups
Conversations
All groups and messages
Send feedback to Google
Help
Training
Sign in
Groups
cv-announce@trustedci.org
Conversations
About
cv-announce@trustedci.org
Contact owners and managers
1–30 of 32
Mark all as read
Report group
0 selected
Fleury, Terry
Apr 10
Sunsetting the cv-announce@trustedci.org mailing list
Hello Trusted CI cv-announce list members, The cv-an...@trustedci.org mailing list is being
unread,
Sunsetting the cv-announce@trustedci.org mailing list
Hello Trusted CI cv-announce list members, The cv-an...@trustedci.org mailing list is being
Apr 10
Fleury, Terry
Mar 21
Multiple Vulnerabilities in Atlassian Products
CI Operators: Atlassian has announced updates to address 1 critical severity issue and 24 high
unread,
Multiple Vulnerabilities in Atlassian Products
CI Operators: Atlassian has announced updates to address 1 critical severity issue and 24 high
Mar 21
Fleury, Terry
Mar 6
VMware Use-After-Free Vulnerabilities (CVE-2024-22252, CVE-2024-22253)
CI Operators: VMware has announced two critical vulnerabilities in VMware Workstation, Fusion, and
unread,
VMware Use-After-Free Vulnerabilities (CVE-2024-22252, CVE-2024-22253)
CI Operators: VMware has announced two critical vulnerabilities in VMware Workstation, Fusion, and
Mar 6
Fleury, Terry
Jan 26
GitLab Critical Security Release 16.8.1 (CVE-2024-0402)
CI Operators: GitLab has released v16.8.1 [1] to address a critical security vulnerability (CVE-2023-
unread,
GitLab Critical Security Release 16.8.1 (CVE-2024-0402)
CI Operators: GitLab has released v16.8.1 [1] to address a critical security vulnerability (CVE-2023-
Jan 26
Fleury, Terry
Jan 12
GitLab Critical Security Release 16.7.2 (CVE-2023-7028)
CI Operators: GitLab has released v16.7.2 [1] to address two critical security vulnerabilities and
unread,
GitLab Critical Security Release 16.7.2 (CVE-2023-7028)
CI Operators: GitLab has released v16.7.2 [1] to address two critical security vulnerabilities and
Jan 12
Fleury, Terry
12/6/23
Remote Code Execution Vulnerabilities in Multiple Atlassian Products
CI Operators: Atlassian has announced four critical remote code execution (RCE) vulnerabilities
unread,
Remote Code Execution Vulnerabilities in Multiple Atlassian Products
CI Operators: Atlassian has announced four critical remote code execution (RCE) vulnerabilities
12/6/23
Fleury, Terry
10/31/23
Improper Authorization Vulnerability In Confluence Data Center and Server (CVE-2023-22518)
CI Operators: Atlassian has announced a critical vulnerability in Confluence Data Center and
unread,
Improper Authorization Vulnerability In Confluence Data Center and Server (CVE-2023-22518)
CI Operators: Atlassian has announced a critical vulnerability in Confluence Data Center and
10/31/23
Fleury, Terry
10/25/23
VMware vCenter Server Out-of-Bounds Write Vulnerability (CVE-2023-34048)
CI Operators: VMware has announced a critical vulnerability in vCenter Server [1]. This vulnerability
unread,
VMware vCenter Server Out-of-Bounds Write Vulnerability (CVE-2023-34048)
CI Operators: VMware has announced a critical vulnerability in vCenter Server [1]. This vulnerability
10/25/23
Fleury, Terry
10/25/23
Escalation of Privilege Vulnerabilities in Kubernetes ingress-nginx controller (CVE-2022-4886, CVE-2023-5043, CVE-2023-5044)
CI Operators: Kubernetes has announced three vulnerabilities [1,2,3] in the ingress-nginx controller
unread,
Escalation of Privilege Vulnerabilities in Kubernetes ingress-nginx controller (CVE-2022-4886, CVE-2023-5043, CVE-2023-5044)
CI Operators: Kubernetes has announced three vulnerabilities [1,2,3] in the ingress-nginx controller
10/25/23
Shane Filus
10/4/23
Two vulnerabilities in BIND 9 (CVE-2023-3341, CVE-2023-4236)
CI Operators: ISC recently released two security advisories for BIND 9 [1] [2]. These issues are
unread,
Two vulnerabilities in BIND 9 (CVE-2023-3341, CVE-2023-4236)
CI Operators: ISC recently released two security advisories for BIND 9 [1] [2]. These issues are
10/4/23
Fleury, Terry
10/4/23
Privilege Escalation Vulnerability in Confluence Data Center and Server (CVE-2023-22515)
CI Operators: Atlassian has announced a privilege escalation vulnerability in Confluence Data Center
unread,
Privilege Escalation Vulnerability in Confluence Data Center and Server (CVE-2023-22515)
CI Operators: Atlassian has announced a privilege escalation vulnerability in Confluence Data Center
10/4/23
Fleury, Terry
10/4/23
Local Privilege Escalation in glibc ld.so (CVE-2023-4911)
CI Operators: A vulnerability in glibc's ld.so dynamic loader has been discovered [1]. Dubbed
unread,
Local Privilege Escalation in glibc ld.so (CVE-2023-4911)
CI Operators: A vulnerability in glibc's ld.so dynamic loader has been discovered [1]. Dubbed
10/4/23
Shane Filus
9/27/23
CRITICAL PMIx race condition vulnerability affecting Slurm (CVE-2023-41915)
CI Operators: A CRITICAL rated vulnerability concerning PMIx has been discovered [1]. The
unread,
CRITICAL PMIx race condition vulnerability affecting Slurm (CVE-2023-41915)
CI Operators: A CRITICAL rated vulnerability concerning PMIx has been discovered [1]. The
9/27/23
Fleury, Terry
9/26/23
Multiple RedHat Linux Kernel Vulnerabilities
CI Operators: RedHat has announced multiple High severity Linux kernel vulnerabilities [1-10]
unread,
Multiple RedHat Linux Kernel Vulnerabilities
CI Operators: RedHat has announced multiple High severity Linux kernel vulnerabilities [1-10]
9/26/23
Shane Filus
9/20/23
Gitlab Critical Security Release 16.3.4 and 16.2.7 (CVE-2023-5009)
CI Operators: GitLab has released v16.3.4 and v.16.2.7 [1] to address a critical security
unread,
Gitlab Critical Security Release 16.3.4 and 16.2.7 (CVE-2023-5009)
CI Operators: GitLab has released v16.3.4 and v.16.2.7 [1] to address a critical security
9/20/23
Fleury, Terry
9/6/23
RedHat subscription-manager Privilege Escalation Vulnerability (CVE-2023-3899)
CI Operators: A vulnerability in the "subscription-manager" command (included with RedHat
unread,
RedHat subscription-manager Privilege Escalation Vulnerability (CVE-2023-3899)
CI Operators: A vulnerability in the "subscription-manager" command (included with RedHat
9/6/23
Fleury, Terry
8/2/23
GitLab Security Release 16.2.2 (CVE-2023-3994, CVE-2023-3364)
CI Operators: GitLab has released v16.2.2 [1] to address several security vulnerabilities, two rated
unread,
GitLab Security Release 16.2.2 (CVE-2023-3994, CVE-2023-3364)
CI Operators: GitLab has released v16.2.2 [1] to address several security vulnerabilities, two rated
8/2/23
Fleury, Terry
7/25/23
Zenbleed (CVE-2023-20593)
CI Operators: A speculative execution vulnerability has been discovered in AMD Zen2 CPUs [1]. This
unread,
Zenbleed (CVE-2023-20593)
CI Operators: A speculative execution vulnerability has been discovered in AMD Zen2 CPUs [1]. This
7/25/23
Fleury, Terry
7/20/23
Remote Code Execution in OpenSSH ssh-agent (CVE-2023-38408)
CI Operators: The OpenSSH project has released v9.3p2 [1] to address a vulnerability in ssh-agent [2]
unread,
Remote Code Execution in OpenSSH ssh-agent (CVE-2023-38408)
CI Operators: The OpenSSH project has released v9.3p2 [1] to address a vulnerability in ssh-agent [2]
7/20/23
Shane Filus
6/29/23
VMware vCenter Server and Cloud Foundation Multiple Vulnerabilities
CI Operators: VMware has reported 5 memory corruption vulnerabilities affecting vCenter Server and
unread,
VMware vCenter Server and Cloud Foundation Multiple Vulnerabilities
CI Operators: VMware has reported 5 memory corruption vulnerabilities affecting vCenter Server and
6/29/23
Fleury, Terry
5/25/23
GitLab Critical Security Release 16.0.1 (CVE-2023-2825)
CI Operators: GitLab has released v16.0.1 [1] to address a critical security vulnerability. This
unread,
GitLab Critical Security Release 16.0.1 (CVE-2023-2825)
CI Operators: GitLab has released v16.0.1 [1] to address a critical security vulnerability. This
5/25/23
Fleury, Terry
2
5/18/23
Linux Kernel Netfilter Module Vulnerability (CVE-2023-32233)
I apologize for the incorrect CVE number in the intro section. The issue is CVE-2023-32233 (not CVE-
unread,
Linux Kernel Netfilter Module Vulnerability (CVE-2023-32233)
I apologize for the incorrect CVE number in the intro section. The issue is CVE-2023-32233 (not CVE-
5/18/23
Fleury, Terry
5/5/23
GitLab Critical Security Release 15.11.2 (CVE-2023-2478)
CI Operators: GitLab has released v15.11.2 [1] to address a critical security vulnerability. This
unread,
GitLab Critical Security Release 15.11.2 (CVE-2023-2478)
CI Operators: GitLab has released v15.11.2 [1] to address a critical security vulnerability. This
5/5/23
Fleury, Terry
4/27/23
Apptainer (Singularity) setuid-mode Vulnerability (CVE-2022-1184)
CI Operators: Apptainer (formerly Singularity) has released an update to address a vulnerability [1]
unread,
Apptainer (Singularity) setuid-mode Vulnerability (CVE-2022-1184)
CI Operators: Apptainer (formerly Singularity) has released an update to address a vulnerability [1]
4/27/23
Fleury, Terry
4/26/23
Linux Kernel OverlayFS Vulnerability (CVE-2023-0386)
CI Operators: A bug in the Linux kernel overlayFS implementation has been discovered [1] which allows
unread,
Linux Kernel OverlayFS Vulnerability (CVE-2023-0386)
CI Operators: A bug in the Linux kernel overlayFS implementation has been discovered [1] which allows
4/26/23
Fleury, Terry
4/10/23
Apache HTTPD Request Smuggling (CVE-2023-25690)
CI Operators: A security vulnerability discovered in the Apache HTTPD server [1] could allow an HTTP
unread,
Apache HTTPD Request Smuggling (CVE-2023-25690)
CI Operators: A security vulnerability discovered in the Apache HTTPD server [1] could allow an HTTP
4/10/23
Fleury, Terry
3/3/23
GitLab Security Release 15.9.2 (CVE-2023-0050)
CI Operators: GitLab has released v15.9.2 [1] to address several security vulnerabilities, one rated
unread,
GitLab Security Release 15.9.2 (CVE-2023-0050)
CI Operators: GitLab has released v15.9.2 [1] to address several security vulnerabilities, one rated
3/3/23
Fleury, Terry
2/15/23
GitLab Critical Security Release 15.8.2 (CVE-2023-23946, CVE-2023-22490)
CI Operators: GitLab has released v15.8.2 [1] to address two critical security vulnerabilities in Git
unread,
GitLab Critical Security Release 15.8.2 (CVE-2023-23946, CVE-2023-22490)
CI Operators: GitLab has released v15.8.2 [1] to address two critical security vulnerabilities in Git
2/15/23
Fleury, Terry
2/6/23
VMware Workstation Arbitrary File Deletion (CVE-2023-20854)
CI Operators: VMware has announced [1] an update for VMware Workstation [2] (for Windows) to address
unread,
VMware Workstation Arbitrary File Deletion (CVE-2023-20854)
CI Operators: VMware has announced [1] an update for VMware Workstation [2] (for Windows) to address
2/6/23
Fleury, Terry
1/25/23
Privilege Escalation Vulnerability in sudoedit (CVE-2023-22809)
CI Operators: A vulnerability discovered in the sudo package (CVE-2023-22809 [1]) could lead to
unread,
Privilege Escalation Vulnerability in sudoedit (CVE-2023-22809)
CI Operators: A vulnerability discovered in the sudo package (CVE-2023-22809 [1]) could lead to
1/25/23