The Birthday attack against 64-bit block ciphers (CVE-2016-2183) was reported for the health checks port (9979) on the etcd grpc-proxy component. Even though the CVE-2016-2183 has been fixed in the et ...
Continue Reading
January 16, 2023
istio [1.13.9-1] - Added Oracle specific files for 1.13.9-1 olcne [1.4.10-1] - Upgraded istio-1.13.7 to istio-1.13.9 to resolve Istio CVE-2022-39278 [1.4.9-2] - Fix 1.21 kubernetes version to align wi ...
Continue Reading
January 11, 2023
istio [1.13.9-1] - Added Oracle specific files for 1.13.9-1 olcne [1.4.10-1] - Upgraded istio-1.13.7 to istio-1.13.9 to resolve Istio CVE-2022-39278 [1.4.9-2] - Fix 1.21 kubernetes version to align wi ...
Continue Reading
January 11, 2023
## Summary There is a vulnerability in the Google protobuf-java library used by IBM WebSphere Application Server Liberty with the grpc-1.0 or grpcClient-1.0 feature enabled. Following IBM® Engineer ...
Continue Reading
December 27, 2022
### Impact There is a potential vulnerability in Traefik displaying the Authorization header in its debug logs. Traefik uses [oxy](https://github.com/vulcand/oxy) to provide the following features: - ...
Continue Reading
December 09, 2022
### Impact There is a potential vulnerability in Traefik displaying the Authorization header in its debug logs. Traefik uses [oxy](https://github.com/vulcand/oxy) to provide the following features: - ...
Continue Reading
December 08, 2022
In 2020, Spotify coined the term ["Golden Pathâ]() to refer to a supported approach and set of components to build and deploy software. Having these paths simplifies the development process, lets ...
Continue Reading
December 07, 2022
Hi, Spring fans! Welcome to another installment of _This Week in Spring_! How are you? You know what I've wanted to do? See my friends on the Spring team in person since the pandemic descended. And, I ...
Continue Reading
December 06, 2022
Back to Main
