CVE-2024-45337, CVE-2025-22869: Bump podman to v5.5.2 that fixes vulnerability in golang.org/x/crypto package by kunalmemane · Pull Request #1974 · openshift/jenkins

kunalmemane · 2025-07-02T11:35:26Z

CVE-2024-45337, CVE-2025-22869: Bump podman to v5.5.2 that fixes vulnerability in golang.org/x/crypto package.

openshift-ci-robot · 2025-07-02T11:35:30Z

@kunalmemane: No Jira issue with key CVE-2024 exists in the tracker at https://issues.redhat.com/.
Once a valid jira issue is referenced in the title of this pull request, request a refresh with /jira refresh.

Details

In response to this:

CVE-2024-45337, CVE-2025-22869: Bump podman to v5.5.2 that fixes vulnerability in golang.org/x/crypto package.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

openshift-ci-robot · 2025-07-02T11:35:30Z

@kunalmemane: No Jira issue with key CVE-2025 exists in the tracker at https://issues.redhat.com/.
Once a valid jira issue is referenced in the title of this pull request, request a refresh with /jira refresh.

Details

In response to this:

CVE-2024-45337, CVE-2025-22869: Bump podman to v5.5.2 that fixes vulnerability in golang.org/x/crypto package.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

kunalmemane · 2025-07-10T06:32:12Z

/retest

kunalmemane · 2025-10-27T07:15:31Z

/retest

kunalmemane · 2025-10-27T08:07:18Z

/retest

kunalmemane · 2025-10-28T08:28:18Z

/retest

kunalmemane · 2025-11-27T04:27:43Z

/lifecycle frozen

openshift-ci · 2025-11-27T04:27:46Z

@kunalmemane: The lifecycle/frozen label cannot be applied to Pull Requests.

Details

In response to this:

/lifecycle frozen

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

k37y · 2026-01-28T09:14:50Z

/lgtm

openshift-ci-robot · 2026-01-28T09:33:21Z

/retest-required

Remaining retests: 0 against base HEAD 6606610 and 2 for PR HEAD 98cb6df in total

kunalmemane · 2026-01-28T09:53:45Z

/retest

…erability in golang.org/x/crypto package

openshift-ci · 2026-02-03T12:07:53Z

@kunalmemane: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/security	`55b112e`	link	false	`/test security`

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

k37y · 2026-02-06T17:20:59Z

/lgtm

openshift-ci · 2026-02-06T17:22:07Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: k37y, kunalmemane

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

~~OWNERS~~ [k37y,kunalmemane]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

openshift-ci Bot requested review from avinal and k37y July 2, 2025 11:37

k37y approved these changes Jan 28, 2026

View reviewed changes

openshift-ci Bot assigned k37y Jan 28, 2026

openshift-ci Bot added lgtm Indicates that a PR is ready to be merged. approved Indicates a PR has been approved by an approver from all required OWNERS files. labels Jan 28, 2026

kunalmemane added 2 commits February 3, 2026 14:43

CVE-2024-45337, CVE-2025-22869: Bump podman to v5.5.2 that fixes vuln…

dc46087

…erability in golang.org/x/crypto package

fix: fixed nil pointer issue

55b112e

kunalmemane force-pushed the CVE-2024-45337-CVE-2025-22869-rhel8 branch from 98cb6df to 55b112e Compare February 3, 2026 09:15

openshift-ci Bot removed the lgtm Indicates that a PR is ready to be merged. label Feb 3, 2026

openshift-ci Bot added the lgtm Indicates that a PR is ready to be merged. label Feb 6, 2026

openshift-merge-bot Bot merged commit 1ba4bae into openshift:release-rhel8 Feb 6, 2026
8 of 10 checks passed

Conversation

kunalmemane commented Jul 2, 2025

Uh oh!

openshift-ci-robot commented Jul 2, 2025

Uh oh!

openshift-ci-robot commented Jul 2, 2025

Uh oh!

kunalmemane commented Jul 10, 2025

Uh oh!

kunalmemane commented Oct 27, 2025

Uh oh!

kunalmemane commented Oct 27, 2025

Uh oh!

kunalmemane commented Oct 28, 2025

Uh oh!

kunalmemane commented Nov 27, 2025

Uh oh!

openshift-ci Bot commented Nov 27, 2025

Uh oh!

k37y commented Jan 28, 2026

Uh oh!

openshift-ci-robot commented Jan 28, 2026

Uh oh!

kunalmemane commented Jan 28, 2026

Uh oh!

openshift-ci Bot commented Feb 3, 2026

Uh oh!

k37y commented Feb 6, 2026

Uh oh!

openshift-ci Bot commented Feb 6, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants