Merge pull request #107 from nunix/update-ocp-k8s-versions

Referenced new supported versions

docs/01.basics/02.requirements/02.requirements.md

@@ -22,7 +22,7 @@ slug: /basics/requirements
 * Officially supported linux distributions, SUSE Linux, Ubuntu, CentOS/Red Hat (RHEL), Debian, CoreOS, AWS Bottlerocket and Photon.
 * AMD64 and Arm architectures
 * CoreOS is supported (November 2023) for CVE scanning through RHEL mapping table provided by RedHat. Once an official feed is published by RedHat for CoreOS it will be supported.
-* Officially supported Kubernetes and Docker compliant container management systems. The following platforms are tested with every release of NeuVector: Kubernetes 1.19-1.29, SUSE Rancher (RKE, RKE2, K3s etc), RedHat OpenShift 4.6-4.13 (3.x to 4.12 supported prior to NeuVector 5.2.x), Google GKE, Amazon EKS, Microsoft Azure AKS, IBM IKS, native docker, docker swarm. The following Kubernetes and docker compliant platforms are supported and have been verified to work with NeuVector: VMware Photon and Tanzu, SUSE CaaS, Oracle OKE, Mirantis Kubernetes Engine, Nutanix Kubernetes Engine, docker UCP/DataCenter, docker Cloud.
+* Officially supported Kubernetes and Docker compliant container management systems. The following platforms are tested with every release of NeuVector: Kubernetes 1.19-1.30, SUSE Rancher (RKE, RKE2, K3s etc), RedHat OpenShift 4.6-4.14 (3.x to 4.12 supported prior to NeuVector 5.2.x), Google GKE, Amazon EKS, Microsoft Azure AKS, IBM IKS, native docker, docker swarm. The following Kubernetes and docker compliant platforms are supported and have been verified to work with NeuVector: VMware Photon and Tanzu, SUSE CaaS, Oracle OKE, Mirantis Kubernetes Engine, Nutanix Kubernetes Engine, docker UCP/DataCenter, docker Cloud.
 * Docker run-time version: 1.9.0 and up; Docker API version: 1.21, CE and EE.
 * Containerd and CRI-O run-times (requires changes to volume paths in sample yamls). See changes required for Containerd in the Kubernetes deployment section and CRI-O in the OpenShift deployment section.
 * NeuVector is compatible with most commercially supported CNI's. Officially tested and supported are openshift ovs (subnet/multitenant), calico, flannel, cilium, antrea and public clouds (gke, aks, iks, eks). Note: The multus cni is not currently supported but is on the 2024 roadmap.

docs/14.releasenotes/01.5x/01.5x.md

@@ -126,6 +126,45 @@ To receive email notifications of new releases, please subscribe to this SUSE ma
 ##### Bug Fixes
 + Fixed bug related to `regex` when using a comma (`,`) in a multi-entry `Admission Control user criteria`.
 + Fixed bug where the CVE scan of `jar` packages would not show all packages affected by a same CVE. Now all occurences are reported.
++ Remediates following CVEs:
+
+<table>
+  <tr>
+    <th>CVE</th>
+    <th>Applies to</th>
+    <th>Impact</th>
+  </tr>
+  <tr>
+    <td>CVE-2024-35195</td>
+    <td>python:requests</td>
+    <td>[[< CVE-medium >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21011</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21012</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21068</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21085</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21094</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+</table>
 
 ##### Other
 + Allow users to set resources for `updater-cron-job` when installing NeuVector with the Helm chart.

versioned_docs/version-5.3/01.basics/02.requirements/02.requirements.md

@@ -22,7 +22,7 @@ slug: /basics/requirements
 * Officially supported linux distributions, SUSE Linux, Ubuntu, CentOS/Red Hat (RHEL), Debian, CoreOS, AWS Bottlerocket and Photon.
 * AMD64 and Arm architectures
 * CoreOS is supported (November 2023) for CVE scanning through RHEL mapping table provided by RedHat. Once an official feed is published by RedHat for CoreOS it will be supported.
-* Officially supported Kubernetes and Docker compliant container management systems. The following platforms are tested with every release of NeuVector: Kubernetes 1.19-1.29, SUSE Rancher (RKE, RKE2, K3s etc), RedHat OpenShift 4.6-4.13 (3.x to 4.12 supported prior to NeuVector 5.2.x), Google GKE, Amazon EKS, Microsoft Azure AKS, IBM IKS, native docker, docker swarm. The following Kubernetes and docker compliant platforms are supported and have been verified to work with NeuVector: VMware Photon and Tanzu, SUSE CaaS, Oracle OKE, Mirantis Kubernetes Engine, Nutanix Kubernetes Engine, docker UCP/DataCenter, docker Cloud.
+* Officially supported Kubernetes and Docker compliant container management systems. The following platforms are tested with every release of NeuVector: Kubernetes 1.19-1.30, SUSE Rancher (RKE, RKE2, K3s etc), RedHat OpenShift 4.6-4.14 (3.x to 4.12 supported prior to NeuVector 5.2.x), Google GKE, Amazon EKS, Microsoft Azure AKS, IBM IKS, native docker, docker swarm. The following Kubernetes and docker compliant platforms are supported and have been verified to work with NeuVector: VMware Photon and Tanzu, SUSE CaaS, Oracle OKE, Mirantis Kubernetes Engine, Nutanix Kubernetes Engine, docker UCP/DataCenter, docker Cloud.
 * Docker run-time version: 1.9.0 and up; Docker API version: 1.21, CE and EE.
 * Containerd and CRI-O run-times (requires changes to volume paths in sample yamls). See changes required for Containerd in the Kubernetes deployment section and CRI-O in the OpenShift deployment section.
 * NeuVector is compatible with most commercially supported CNI's. Officially tested and supported are openshift ovs (subnet/multitenant), calico, flannel, cilium, antrea and public clouds (gke, aks, iks, eks). Note: The multus cni is not currently supported but is on the 2024 roadmap.

versioned_docs/version-5.3/14.releasenotes/01.5x/01.5x.md

@@ -126,6 +126,45 @@ To receive email notifications of new releases, please subscribe to this SUSE ma
 ##### Bug Fixes
 + Fixed bug related to `regex` when using a comma (`,`) in a multi-entry `Admission Control user criteria`.
 + Fixed bug where the CVE scan of `jar` packages would not show all packages affected by a same CVE. Now all occurences are reported.
++ Remediates following CVEs:
+
+<table>
+  <tr>
+    <th>CVE</th>
+    <th>Applies to</th>
+    <th>Impact</th>
+  </tr>
+  <tr>
+    <td>CVE-2024-35195</td>
+    <td>python:requests</td>
+    <td>[[< CVE-medium >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21011</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21012</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21068</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21085</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+  <tr>
+    <td>CVE-2024-21094</td>
+    <td>openjdk11</td>
+    <td>[[< CVE-low >]]</td>
+  </tr>
+</table>
 
 ##### Other
 + Allow users to set resources for `updater-cron-job` when installing NeuVector with the Helm chart.