aws-efs-csi-driver-fips
Chainguard
2.1.7-r0
6.2
CVSS V3
Status
Fixed version
2.1.7-r0Status
Impact
To remedieate this CVE the code requires upgrading Kubernetes dependencies to v1.29.14, but doing that the build fails due to missing feature flags (genericfeatures.StructuredAuthorizationConfiguration and genericfeatures.ZeroLimitedNominalConcurrencyShares) that were removed in later versions. The package currently depends on k8s.io/kubernetes v1.28.15. This requires upstream changes to support newer Kubernetes API versions and feature gates.
Status