Skip to content

k3s-1.33/1.33.5.1-r0: cve remediation #68666

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jamie-albert merged 2 commits into from
Oct 14, 2025
Merged

k3s-1.33/1.33.5.1-r0: cve remediation #68666

jamie-albert merged 2 commits into from
Oct 14, 2025

Conversation

@octo-sts
Copy link
Contributor

@octo-sts octo-sts bot commented Oct 11, 2025

k3s-1.33/1.33.5.1-r0: fix GHSA-47m2-4cr7-mhcw

Advisory data: https://github.com/wolfi-dev/advisories/blob/main/k3s-1.33.advisories.yaml

"Breadcrumbs" for this automated service

@octo-sts
Copy link
Contributor Author

octo-sts bot commented Oct 11, 2025
edited
Loading

🛑 Build Failed: Compilation

undefined: quic.EarlyConnection and multiple undefined types/functions in github.com/quic-go/webtransport-go and github.com/libp2p/go-libp2p/p2p/transport/quicreuse packages

Build Details

Category Details
Build System go
Failure Point go build command for k3s binary compilation

Root Cause Analysis 🔍

Compilation failures due to undefined types and incompatible function signatures in QUIC-related dependencies, likely caused by version incompatibilities between go-quic libraries and their dependents

Was this comment helpful? Please use 👍 or 👎 reactions on this comment.

@octo-sts octo-sts bot added the ai/skip-comment Stop AI from commenting on PR label Oct 11, 2025
@Ankush-Pathak Ankush-Pathak self-assigned this Oct 14, 2025
@Ankush-Pathak
fix(k3s-1.33): Fix build failures due to quic-go bump
e97eef9 
Signed-off-by: Ankush Pathak <ankush.pathak@chainguard.dev>
@octo-sts octo-sts bot added bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. manual/review-needed labels Oct 14, 2025
@Ankush-Pathak Ankush-Pathak requested a review from a team October 14, 2025 16:25
@jamie-albert jamie-albert merged commit 7f5c22d into main Oct 14, 2025
20 checks passed
@jamie-albert jamie-albert deleted the cve-k3s-1.33-1.33.5.1-r0-9d7462656983273270e79717415f8491 branch October 14, 2025 16:57
@octo-sts octo-sts bot mentioned this pull request Jan 11, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jamie-albert jamie-albert jamie-albert approved these changes

Assignees

@Ankush-Pathak Ankush-Pathak

Labels

ai/skip-comment Stop AI from commenting on PR automated pr bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. GHSA-47m2-4cr7-mhcw go/bump k3s-1.33 manual/review-needed request-cve-remediation

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jamie-albert @Ankush-Pathak