Skip to content

Fix for CVE-2022-3171#825

Merged
joannatk merged 1 commit into
devfrom
joannak/MONIT-32240
Jan 17, 2023
Merged

Fix for CVE-2022-3171#825
joannatk merged 1 commit into
devfrom
joannak/MONIT-32240

Conversation

@joannatk

Copy link
Copy Markdown
Contributor

No description provided.

@locke-chappel locke-chappel left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The protobuf related CVEs are resolved with this change. Looks good from the security side.

@sbhakta-vmware sbhakta-vmware left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@joannatk
joannatk merged commit 915907e into dev Jan 17, 2023
@joannatk
joannatk deleted the joannak/MONIT-32240 branch January 17, 2023 18:00
laullon added a commit that referenced this pull request Jan 24, 2023
* dev:
  Add debug logging (#823)
  Fix for CVE-2022-3171 (#825)
  MONIT-32454 Update Dockerfile to create a directory (#822)
  Add 5 second timeout for PushAgent tests (#820)
  [release] prepare for next development iteration
  [release] prepare release for proxy-12.1
  update open_source_licenses.txt for release 12.1
  Update wavefront.conf.default (#819)
  Proxy V12.2
  [MONIT-32096] Better Local Hostname detection (#817)
  changes for linux packages solve bug detected on v12.0 (#816)
  MONIT-31965 Add debug level payload logging (#813)
  deosu/monit 31993: add fluentBit support (#812)

# Conflicts:
#	proxy/pom.xml
#	proxy/src/main/java/com/wavefront/agent/AbstractAgent.java
#	proxy/src/main/java/com/wavefront/agent/ProxyConfig.java
joannatk added a commit that referenced this pull request Mar 1, 2023
* Proxy V12.2

* Update wavefront.conf.default (#819)

* Add 5 second timeout for PushAgent tests (#820)

* MONIT-32454 Update Dockerfile to create a directory (#822)

* Fix for CVE-2022-3171 (#825)

* Add debug logging (#823)

* MONIT-32483 record payloads batch before forwarding to vRLIC

* MONIT-32483 surround logging with try-catch

* prevent empty hostname tag

* Fix for CVE-2022-41881 (7.5) (#833)

* MONIT-30817: Api to get and search Proxy configuration (#832)

* MONIT-30817: MONIT-30817: Api to get and search Proxy configuration #811
* MONIT-30818: MONIT-30818: Api to get and search pre processor rules #826
* Bump java-lib version to 2023-02.1

* MONIT 32316 process cloud watch logs (#827)

* Update com.amazonaws - aws-java-sdk-sqs dep (#828)

Co-authored-by: Joanna Ko <69543190+joannak-vmware@users.noreply.github.com>

* MONIT-32317: Add a tag format to hyperlogs metrics (#831)

---------

Co-authored-by: German Laullon <glaullon@vmware.com>
Co-authored-by: Glenn Oppegard <goppegard@vmware.com>
Co-authored-by: Sumit Deo <93740684+deosu@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants