Vulnerabilities Fix

syedghouse14 · 5 November 2024 07:14

Hello Team,

We are using the confluentinc/cp-kafka-connect-base:7.7.1 image fort the elastic and couchbase connector .

We are seeing vulnerabilities with this version. let us know when the next release will be available for the use.

Attached SS of some of the vulnerabilities available in the image . Please check and let us know the tentative of next release.

Regards,
Syed Ghouse

mmuehlbeyer · 5 November 2024 10:11

are you able to login to confluent support portal?

Best,
michael

Topic		Replies	Views
Is the kafka-connect docker image confluentinc/cp-kafka-connect-base:5.5.0 affected by the log4j vulnerability https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228? Kafka Connect	2	3243	14 December 2021
Is cp-kafka-connect-base image still using confluent forked log4j v1.x? Self-Managed Connectors	1	1842	4 June 2023
Resolving CVE-2022-48566 and CVE-2023-40217 Kafka Connect	1	1236	29 October 2023
Confluent-community-2.13 log4J vulnerability Kafka Connect	7	3324	2 March 2022
The cloudfront we used for libraries doesn't work anymore Kafka Connect	6	243	18 August 2024