Skip to content

Commit e447817

Browse files
authored
Merge pull request #508 from nadezhdafilina/update-mlflow
updated mlflow library
2 parents fa76c1e + b889ead commit e447817

2 files changed

Lines changed: 25 additions & 9 deletions

File tree

docs/.vuepress/components/ELSTechnology.vue

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1354,7 +1354,7 @@ const techData = [
13541354
},
13551355
{
13561356
name: "MLflow",
1357-
versions: "2.22.4",
1357+
versions: "2.9.1 | 2.22.4",
13581358
link: "./python-libraries/",
13591359
},
13601360
{

docs/els-for-libraries/python-libraries/README.md

Lines changed: 24 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ Endless Lifecycle Support (ELS) for Libraries from TuxCare provides security fix
1818
* **idna** 2.1, 2.8, 2.10, 3.6
1919
* **jaraco-context** 5.3.0
2020
* **Jinja2** 2.11.3, 3.0.3
21-
* **MLflow** 2.22.4
21+
* **MLflow** 2.9.1, 2.22.4
2222
* **MySQL Connector/Python** 8.4.0
2323
* **orjson** 3.8.5
2424
* **pandas** 2.2.0, 2.2.2
@@ -315,13 +315,29 @@ Fixes for the following vulnerabilities are available in ELS for Python Librarie
315315

316316
<template #mlflow>
317317

318-
| CVE ID | Severity | Vulnerable Versions | Safe Version |
319-
| :-----------: | :------: | :-----------------: | :-------------------: |
320-
| CVE-2024-6838 | Medium | 2.22.4 | 2.22.4.post1+tuxcare |
321-
| CVE-2024-156 | Medium | 2.22.4 | 2.22.4.post1+tuxcare |
322-
| CVE-2025-0453 | High | 2.22.4 | 2.22.4.post1+tuxcare |
323-
| CVE-2025-14279| High | 2.22.4 | 2.22.4.post1+tuxcare |
324-
318+
| CVE ID | Severity | Vulnerable Versions | Safe Version |
319+
| :------------: | :------: | :-----------------: | :--------------------: |
320+
| CVE-2026-2635 | Critical | 2.22.4 | 2.22.4.post2+tuxcare |
321+
| CVE-2026-2033 | High | 2.22.4 | 2.22.4.post2+tuxcare |
322+
| CVE-2025-15031 | Critical | 2.22.4 | 2.22.4.post2+tuxcare |
323+
| CVE-2025-14287 | High | 2.22.4 | 2.22.4.post2+tuxcare |
324+
| CVE-2025-14279 | High | 2.22.4 | 2.22.4.post1+tuxcare |
325+
| CVE-2025-0453 | High | 2.22.4 | 2.22.4.post1+tuxcare |
326+
| CVE-2024-6838 | Medium | 2.22.4 | 2.22.4.post1+tuxcare |
327+
| CVE-2024-156 | Medium | 2.22.4 | 2.22.4.post1+tuxcare |
328+
| CVE-2024-27132 | Critical | <= 2.9.2 | 2.9.1.post2+tuxcare |
329+
| CVE-2024-27133 | Critical | <= 2.9.2 | 2.9.1.post2+tuxcare |
330+
| CVE-2024-3573 | Critical | < 2.10.0 | 2.9.1.post2+tuxcare |
331+
| CVE-2023-6974 | Critical | < 2.9.2 | 2.9.1.post2+tuxcare |
332+
| CVE-2023-6975 | Critical | < 2.9.2 | 2.9.1.post2+tuxcare |
333+
| CVE-2024-37056 | High | >= 1.23.0 | 2.9.1.post2+tuxcare |
334+
| CVE-2024-27134 | High | < 2.16.0 | 2.9.1.post2+tuxcare |
335+
| CVE-2023-6709 | High | < 2.9.2 | 2.9.1.post2+tuxcare |
336+
| CVE-2023-6753 | High | < 2.9.2 | 2.9.1.post2+tuxcare |
337+
| CVE-2023-6909 | High | < 2.9.2 | 2.9.1.post2+tuxcare |
338+
| CVE-2024-1593 | High | < 2.11.3 | 2.9.1.post2+tuxcare |
339+
| CVE-2024-2928 | High | < 2.11.3 | 2.9.1.post2+tuxcare |
340+
| CVE-2025-52967 | Medium | < 3.1.0 | 2.9.1.post2+tuxcare |
325341

326342
</template>
327343

0 commit comments

Comments
 (0)