Add security page #161
Add security page #161
Conversation
Signed-off-by: Abigail McCarthy <[email protected]>
Signed-off-by: Abigail McCarthy <[email protected]>
Documentation preview |
|
|
||
|
|
||
|
|
||
| CVEs |
There was a problem hiding this comment.
Do we think a table like this is useful? Are their other fields we should maintain in our docs (all the CVE info is also in the linked bulletins)
There are a few more of these CVEs that relate to vulnerabilities in images used in older version. For completeness, we should probably include them as well, but i wanted to make sure that the table was valuable before i went to the trouble of adding all the rest.
There was a problem hiding this comment.
I think it is valuable. I don't think we should add any more information to this table though. The security bulletin should be the source of truth and readers should be redirected there if they want more information about any particular CVE.
There was a problem hiding this comment.
@a-mccarthy Thanks for this PR! I am good with these changes, but I would like to get another opinion on the table contents.
| * - `NVIDIA CVE-2024-0132 <https://nvidia.custhelp.com/app/answers/detail/a_id/5582>`_ | ||
| - NVIDIA Container Toolkit, all versions up to and including 1.16.1 | ||
|
|
||
| NVIDIA GPU Operator, all versions up to and including 24.6.2 |
There was a problem hiding this comment.
| NVIDIA GPU Operator, all versions up to and including 24.6.2 | |
| NVIDIA GPU Operator, all versions up to and including 24.6.1 | |
|
|
||
|
|
||
|
|
||
| CVEs |
There was a problem hiding this comment.
I think it is valuable. I don't think we should add any more information to this table though. The security bulletin should be the source of truth and readers should be redirected there if they want more information about any particular CVE.
Part of #155