Bug 247735 - envoy/istio: Multiple vulnerabilites
Summary: envoy/istio: Multiple vulnerabilites
Status: Open
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Many People
Assignee: Danilo Egea Gondolfo
URL:
Keywords: security
Depends on:
Blocks:
 
Reported: 2020-07-03 08:57 UTC by rob2g2
Modified: 2024-10-29 06:18 UTC (History)
5 users (show)

See Also:
bugzilla: maintainer-feedback? (danilo)

Attachments
patch for vuxml to inform istio + envoy users (2.01 KB, patch)
2020-07-03 08:57 UTC, rob2g2 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description rob2g2 2020-07-03 08:57:06 UTC 
Created attachment 216163 [details]
patch for vuxml to inform istio + envoy users

report CVE-2020-12603 CVE-2020-12605 CVE-2020-8663 CVE-2020-12604 to users via vuxml
Comment 1 Danilo Egea Gondolfo freebsd_committer freebsd_triage 2024-10-29 06:18:59 UTC 
Sorry for never have replied this PR. I'm planning to remove this port as it's not very useful. Istio maintains a bunch of versions simultaneously and, as far as I understand, one cannot just upgrade it to a new version easily. Ideally we should have ports for all the versions supported to make it useful for users.