chore(findings): collaborationai/crowd-vector/virusscan
Summary
collaborationai/crowd-vector/virusscan has 12 new findings discovered during continuous monitoring.
| id | source | package |
|---|---|---|
| CCE-83497-8 | oscap_comp | Uninherited |
| CCE-80809-7 | oscap_comp | Uninherited |
| CVE-2021-23177 | twistlock_cve | libarchive-3.3.3-1.el8 |
| CVE-2021-31566 | twistlock_cve | libarchive-3.3.3-1.el8 |
| CVE-2021-31566 | anchore_cve | libarchive-3.3.3-1.el8 |
| CVE-2021-23177 | anchore_cve | libarchive-3.3.3-1.el8 |
| CVE-2021-4166 | twistlock_cve | vim-minimal-8.0.1763-16.el8 |
| CVE-2021-4189 | twistlock_cve | python3-libs-3.6.8-41.el8 |
| CVE-2021-4189 | twistlock_cve | platform-python-3.6.8-41.el8 |
| CVE-2021-4189 | anchore_cve | platform-python-3.6.8-41.el8 |
| CVE-2021-4189 | anchore_cve | python3-libs-3.6.8-41.el8 |
| CVE-2021-3712 | oscap_comp | Uninherited |
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/collaborationai/crowd-vector/virusscan/-/jobs/9109045
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official