chore(findings): cluster-auditor/opa-collector
Summary
cluster-auditor/opa-collector has 65 new findings discovered during continuous monitoring.
id | source | severity | package |
---|---|---|---|
CVE-2013-0269 | twistlock_cve | High | json-FILE)).chomp |
CVE-2018-25032 | oscap_comp | Medium | |
CVE-2020-10663 | twistlock_cve | High | json-FILE)).chomp |
CVE-2021-3521 | oscap_comp | Medium | |
CVE-2021-3634 | oscap_comp | Medium | |
CVE-2021-3737 | oscap_comp | Medium | |
CVE-2021-3872 | oscap_comp | Medium | |
CVE-2021-3872 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2021-3984 | oscap_comp | Medium | |
CVE-2021-3984 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2021-4019 | oscap_comp | Medium | |
CVE-2021-4019 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2021-4122 | oscap_comp | Medium | |
CVE-2021-4189 | oscap_comp | Medium | |
CVE-2021-4192 | oscap_comp | Medium | |
CVE-2021-4192 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2021-4193 | oscap_comp | Medium | |
CVE-2021-4193 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2021-44568 | anchore_cve | Low | libsolv-0.7.19-1.el8 |
CVE-2021-44568 | twistlock_cve | Low | libsolv-0.7.19-1.el8 |
CVE-2022-0261 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-0318 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-0359 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-0361 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-0361 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8 |
CVE-2022-0392 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-0392 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8 |
CVE-2022-0413 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-0759 | twistlock_cve | High | kubeclient-4.6.0 |
CVE-2022-0778 | oscap_comp | Medium | |
CVE-2022-0778 | twistlock_cve | Critical | openssl-1.1.1k-5.el8_5 |
CVE-2022-0778 | twistlock_cve | Critical | openssl-libs-1.1.1k-5.el8_5 |
CVE-2022-1154 | oscap_comp | Medium | |
CVE-2022-1154 | anchore_cve | Low | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-1154 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8 |
CVE-2022-1271 | oscap_comp | Medium | |
CVE-2022-1271 | twistlock_cve | Critical | gzip-1.9-12.el8 |
CVE-2022-1271 | anchore_cve | High | xz-libs-5.2.4-3.el8 |
CVE-2022-1271 | twistlock_cve | Critical | xz-libs-5.2.4-3.el8 |
CVE-2022-1292 | twistlock_cve | Medium | openssl-1.1.1k-5.el8_5 |
CVE-2022-1292 | anchore_cve | Medium | openssl-1:1.1.1k-5.el8_5 |
CVE-2022-1292 | twistlock_cve | Medium | openssl-libs-1.1.1k-5.el8_5 |
CVE-2022-1292 | anchore_cve | Medium | openssl-libs-1:1.1.1k-5.el8_5 |
CVE-2022-1619 | twistlock_cve | Low | vim-minimal-8.0.1763-16.el8 |
CVE-2022-1621 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-1621 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8 |
CVE-2022-1629 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-1629 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8 |
CVE-2022-23708 | anchore_cve | Medium | elasticsearch-7.16.3 |
CVE-2022-24407 | oscap_comp | Medium | |
CVE-2022-24407 | anchore_cve | High | cyrus-sasl-lib-2.1.27-5.el8 |
CVE-2022-24407 | twistlock_cve | Critical | cyrus-sasl-lib-2.1.27-5.el8 |
CVE-2022-24795 | twistlock_cve | High | yajl-ruby-1.4.1 |
CVE-2022-29824 | anchore_cve | Medium | libxml2-2.9.7-9.el8_4.2 |
CVE-2022-29824 | twistlock_cve | Medium | libxml2-2.9.7-9.el8_4.2 |
CVE-2022-29824 | anchore_cve | Medium | python3-libxml2-2.9.7-9.el8_4.2 |
CVE-2022-29824 | twistlock_cve | Medium | python3-libxml2-2.9.7-9.el8_4.2 |
GHSA-69p3-xp37-f692 | anchore_cve | High | kubeclient-4.6.0 |
GHSA-jj47-x69x-mxrm | anchore_cve | Medium | yajl-ruby-1.4.1 |
CVE-2022-1897 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-1897 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8 |
CVE-2022-1785 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-1785 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8 |
CVE-2022-1927 | anchore_cve | Medium | vim-minimal-2:8.0.1763-16.el8 |
CVE-2022-1927 | twistlock_cve | Medium | vim-minimal-8.0.1763-16.el8 |
VAT: https://vat.dso.mil/vat/container/17377?branch=master
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/cluster-auditor/opa-collector/-/jobs/9880899
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official
Edited by Ghost User