chore(findings): beast-code/courseware/base-image
Summary
beast-code/courseware/base-image has 19 new findings discovered during continuous monitoring.
id | source | severity | package |
---|---|---|---|
CCE-85987-6 | oscap_comp | Medium | |
CCE-86519-6 | oscap_comp | Medium | |
CCE-80806-3 | oscap_comp | Medium | |
CVE-2021-3634 | oscap_comp | Medium | |
CVE-2021-3737 | oscap_comp | Medium | |
CVE-2021-4189 | oscap_comp | Medium | |
CVE-2021-3634 | twistlock_cve | Low | libssh-config-0.9.4-3.el8 |
CVE-2021-3634 | twistlock_cve | Low | libssh-0.9.4-3.el8 |
CVE-2022-27782 | anchore_cve | Medium | libcurl-7.61.1-22.el8 |
CVE-2022-27782 | anchore_cve | Medium | curl-7.61.1-22.el8 |
CVE-2022-1621 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8_5.13 |
CVE-2022-1629 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8_5.13 |
CVE-2022-27782 | twistlock_cve | Medium | curl-7.61.1-22.el8 |
CVE-2022-27782 | twistlock_cve | Medium | libcurl-7.61.1-22.el8 |
CVE-2021-43529 | anchore_cve | Critical | nss-softokn-3.67.0-7.el8_5 |
CVE-2021-43529 | anchore_cve | Critical | nss-3.67.0-7.el8_5 |
CVE-2021-43529 | anchore_cve | Critical | nss-util-3.67.0-7.el8_5 |
CVE-2021-43529 | anchore_cve | Critical | nss-sysinit-3.67.0-7.el8_5 |
CVE-2021-43529 | anchore_cve | Critical | nss-softokn-freebl-3.67.0-7.el8_5 |
VAT: https://vat.dso.mil/vat/container/18359?branch=master
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/beast-code/courseware/base-image/-/jobs/9118354
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official
Edited by Ghost User