Skip to content

Latest commit

 

History

History
27 lines (16 loc) · 1005 Bytes

SECURITY.md

File metadata and controls

27 lines (16 loc) · 1005 Bytes
Raw

Security Policy

Supported Versions

Version Supported
1.0.x
<= 1.0.x

Reporting a Vulnerability

Please post your vulnerability report from the following page: https://github.com/jfrog/log-analytics-splunk/security/advisories

Fixed issues

March 22, 2024

Upgraded docker images to use fluentd:1.16.3 This resolves the following CVEs

Note: When scanning our fluentd docker image releases-pts-observability-fluentd.jfrog.io/fluentd:4.1 for volunerabilities, CVE-2023-45853 still comes up (from fluentd:1.16.3). However, fluentd claims it's a non-issue since affected code (MiniZip) is not built-in