Argo CD Package Security Update Advisory

May 23 2024

Overview

A security update has been made available to fix a vulnerability in the Argo CD package. Users of affected versions are advised to update to the latest version.

Affected Products

Argo CD package versions: 2.8.18 or below
Argo CD package versions: 2.8.19 (excluded) to 2.9.14 (included)
Argo CD Package Versions : 2.9.15 (excluded) to 2.10.9 (included)
Argo CD package versions: 2.10.10 (excluded) to 2.11.0 (included)

Resolved Vulnerabilities

Vulnerability in Redis cache using a risky or missing cryptographic algorithm (CVE-2024-31989)

Vulnerability Patches

Vulnerability patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

Argo CD package versions 2.11.1, 2.10.10, 2.9.15, and 2.8.19

Referenced Sites

[1] CVE-2024-31989 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-31989

[2] Use of Risky or Missing Cryptographic Algorithms in Redis Cache

https://github.com/argoproj/argo-cd/security/advisories/GHSA-9766-5277-j5hr

Argo CD Package Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

ManageEngine (PAM360) Product May 2024 Security Update Advisory

Google Chrome Browser (125.0.6422.112/.113) Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

ManageEngine (PAM360) Product May 2024 Security Update Advisory

Google Chrome Browser (125.0.6422.112/.113) Security Update Advisory