From 2b6c8ac2407779ec4c2270017e1a00ba860d3328 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20M=C3=BCller?= <1005065+DeepDiver1975@users.noreply.github.com> Date: Thu, 7 May 2026 10:14:29 +0200 Subject: [PATCH 1/3] fix: add CVE-2026-44167 to trivyignore for 10.16.2 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Müller <1005065+DeepDiver1975@users.noreply.github.com> --- v22.04/10.16.2/.trivyignore | 3 +++ 1 file changed, 3 insertions(+) diff --git a/v22.04/10.16.2/.trivyignore b/v22.04/10.16.2/.trivyignore index cf1dbad..353aba9 100644 --- a/v22.04/10.16.2/.trivyignore +++ b/v22.04/10.16.2/.trivyignore @@ -3,3 +3,6 @@ CVE-2024-51736 # fix requires ownCloud to update bundled aws-sdk-php (3.337.3 -> 3.371.4) in files_primary_s3 GHSA-27qh-8cxx-2cr5 + +# will be fixed with oc 10.16.3 or later +CVE-2026-44167 From 79b4251807294775070c7c213c362ddc7b8c7c0a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20M=C3=BCller?= <1005065+DeepDiver1975@users.noreply.github.com> Date: Thu, 7 May 2026 10:24:14 +0200 Subject: [PATCH 2/3] fix: add CVE-2026-44167 to trivyignore for 10.16.1 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Müller <1005065+DeepDiver1975@users.noreply.github.com> --- v22.04/10.16.1/.trivyignore | 3 +++ 1 file changed, 3 insertions(+) diff --git a/v22.04/10.16.1/.trivyignore b/v22.04/10.16.1/.trivyignore index 5157ab6..fd15115 100644 --- a/v22.04/10.16.1/.trivyignore +++ b/v22.04/10.16.1/.trivyignore @@ -6,3 +6,6 @@ GHSA-27qh-8cxx-2cr5 # will be fixed with oc 10.16.2 - TODO: remove once 10.16.2 is available for this branch CVE-2026-32935 + +# will be fixed with oc 10.16.3 or later +CVE-2026-44167 From 557dba77301541db7a788a7b1fff3019b6e5c91e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20M=C3=BCller?= <1005065+DeepDiver1975@users.noreply.github.com> Date: Thu, 7 May 2026 13:06:27 +0200 Subject: [PATCH 3/3] fix: add CVE-2026-44167 to trivyignore for 10.15.3 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Müller <1005065+DeepDiver1975@users.noreply.github.com> --- v22.04/10.15.3/.trivyignore | 3 +++ 1 file changed, 3 insertions(+) diff --git a/v22.04/10.15.3/.trivyignore b/v22.04/10.15.3/.trivyignore index 5157ab6..fd15115 100644 --- a/v22.04/10.15.3/.trivyignore +++ b/v22.04/10.15.3/.trivyignore @@ -6,3 +6,6 @@ GHSA-27qh-8cxx-2cr5 # will be fixed with oc 10.16.2 - TODO: remove once 10.16.2 is available for this branch CVE-2026-32935 + +# will be fixed with oc 10.16.3 or later +CVE-2026-44167