chore(findings): cloudbees/core/core-mm
Summary
cloudbees/core/core-mm has 8 new findings discovered during continuous monitoring.
| id | source | package |
|---|---|---|
| CVE-2021-3468 | anchore_cve | avahi-libs-0.7-20.el8 |
| CVE-2021-23383 | anchore_cve | handlebars-1.1.1 |
| CVE-2021-23383 | anchore_cve | handlebars-1.1.1 |
| CVE-2021-23383 | anchore_cve | handlebars-1.1.1 |
| CVE-2021-31535 | anchore_cve | libX11-1.6.8-4.el8 |
| CVE-2021-31535 | anchore_cve | libX11-common-1.6.8-4.el8 |
| CVE-2021-29505 | anchore_cve | xstream-1.4.16 |
| GHSA-7chv-rrw6-w6fc | anchore_cve | xstream-1.4.16 |
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/cloudbees/core/core-mm/-/jobs/3488900
Definition of Done
Justifications:
- All findings have been justified
- Justifications have been provided to the container hardening team
Approval Process:
- Findings Approver has reviewed and approved all justifications
- Approval request has been sent to Authorizing Official
- Approval request has been processed by Authorizing Official
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information