Skip to content
This repository has been archived by the owner on Jan 15, 2025. It is now read-only.

(PA-6378) Address a low-severity vulnerability, CVE-2024-2511 #822

Merged
merged 1 commit into from
Apr 15, 2024
Merged

(PA-6378) Address a low-severity vulnerability, CVE-2024-2511 #822

merged 1 commit into from
Apr 15, 2024

Conversation

skyamgarp
Copy link
Contributor

@skyamgarp skyamgarp commented Apr 15, 2024
edited
Loading

@skyamgarp skyamgarp requested review from a team as code owners April 15, 2024 17:09
@skyamgarp
Copy link
Contributor Author 

swati.yamgar@MacBook-Pro puppet-runtime % bundle exec rake vanagon:component_diff -- -P agent-runtime-main -p all --from HEAD^1 --to HEAD
⚠️ DISCLAIMER

This task is still experimental, it can be invoked locally provided that
development dependencies are installed (bundle install --with development).

Ensure all your local changes are committed, then run
bundle exec rake vanagon:component_diff -- [options].

Run the task with --help to see all available options. If you notice unexpected
behavior or want to suggest improvements, ping #prod-puppet-agent on Slack.

Here is what your code changes would affect:

Project agent-runtime-main

Platform name: sles-11-i386
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: aix-7.2-ppc
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-8-aarch64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: debian-12-amd64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-8-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-7-ppc64le
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: redhatfips-8-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: osx-14-arm64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: windows-2019-x64
    Component 'openssl-3.0'
        Field: patches[1]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: ubuntu-22.04-amd64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: solaris-11-i386
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: sles-11-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: solaris-11-native-sparc
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: sles-12-ppc64le
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: osx-12-arm64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: osx-13-arm64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-8-ppc64le
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-9-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: windows-2012r2-x64
    Component 'openssl-3.0'
        Field: patches[1]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: fedora-36-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: debian-12-armhf
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: windows-2012r2-x86
    Component 'openssl-3.0'
        Field: patches[1]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: redhatfips-9-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: ubuntu-20.04-aarch64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: solaris-11-sparc
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: solaris-10-sparc
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: ubuntu-24.04-amd64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: debian-11-aarch64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: ubuntu-18.04-aarch64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: osx-12-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: sles-12-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: debian-12-aarch64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-7-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: windowsfips-2012r2-x64
    Component 'openssl-3.0'
        Field: patches[1]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: ubuntu-18.04-amd64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: osx-14-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: amazon-2023-aarch64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: redhatfips-7-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: ubuntu-22.04-aarch64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: debian-11-amd64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: debian-10-amd64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-6-i386
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: osx-13-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: debian-11-armhf
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-6-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: debian-10-armhf
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: sles-15-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-9-ppc64le
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: ubuntu-20.04-amd64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: osx-11-arm64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: amazon-2023-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: osx-11-x86_64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: el-9-aarch64
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}




Platform name: solaris-10-i386
    Component 'openssl-3.0'
        Field: patches[0]
        --------------------
        + {"origin_path"=>"resources/patches/openssl/CVE-2024-2511.patch", "namespace"=>"openssl-3.0", "assembly_path"=>"patches/openssl-3.0/CVE-2024-2511.patch", "strip"=>1, "fuzz"=>0, "after"=>"unpack", "destination"=>nil}

@skyamgarp
Copy link
Contributor Author

skyamgarp commented Apr 15, 2024
edited
Loading

Vanagon build: https://jenkins-platform.delivery.puppetlabs.net/view/vanagon-generic-builder/job/platform_vanagon-generic-builder_vanagon-packaging_generic-builder/2792/

@mhashizume mhashizume merged commit 9dffe90 into puppetlabs-toy-chest:master Apr 15, 2024
3 checks passed
@mhashizume mhashizume mentioned this pull request Apr 15, 2024
Merged
@skyamgarp skyamgarp deleted the PA-6378 branch April 16, 2024 05:42
@joshcooper joshcooper added the bug Something isn't working label Apr 18, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@mhashizume mhashizume mhashizume approved these changes

Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@skyamgarp @mhashizume @joshcooper