Overview

File _patchinfo of Package patchinfo.34482

<patchinfo incident="34482">
  <issue tracker="bnc" id="1223965">VUL-0: CVE-2024-33394: kubevirt: clusterRole with list secrets premission</issue>
  <issue tracker="cve" id="2024-33394"/>
  <packager>vulyanov</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container</summary>
  <description>This update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container fixes the following issues:


- Collect component Role rules under operator Role instead of
  ClusterRole (bsc#1223965, CVE-2024-33394)
- Ensure procps is installed (provides ps for tests)

This update also rebuilds it against current go releases.
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places