chore(findings): confluentinc/cp-init-container-operator
Summary
confluentinc/cp-init-container-operator has 21 new findings discovered during continuous monitoring.
id | source | severity | package |
---|---|---|---|
CCE-85987-6 | oscap_comp | Medium | |
CVE-2019-13509 | anchore_cve | High | docker-4.4.4 |
CVE-2019-13139 | anchore_cve | High | docker-4.4.4 |
CVE-2018-10892 | anchore_cve | Medium | docker-4.4.4 |
CVE-2019-16884 | anchore_cve | High | docker-4.4.4 |
CVE-2020-27534 | anchore_cve | Medium | docker-4.4.4 |
CVE-2019-5736 | anchore_cve | High | docker-4.4.4 |
CVE-2021-21285 | anchore_cve | Medium | docker-4.4.4 |
CVE-2021-21284 | anchore_cve | Medium | docker-4.4.4 |
CVE-2022-25365 | anchore_cve | High | docker-4.4.4 |
CVE-2022-24302 | twistlock_cve | Medium | paramiko-2.7.2 |
GHSA-f8q4-jwww-x3wv | anchore_cve | Medium | paramiko-2.7.2 |
CCE-85886-0 | oscap_comp | Medium | |
CVE-2015-20107 | twistlock_cve | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2021-3733 | twistlock_cve | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2022-0391 | twistlock_cve | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2019-9674 | twistlock_cve | Low | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2021-3737 | twistlock_cve | Low | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2018-20406 | twistlock_cve | Low | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2018-1121 | twistlock_cve | Low | procps-ng-3.3.15-6.el8 |
CVE-2021-28861 | anchore_cve | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
VAT: https://vat.dso.mil/vat/container/16111?branch=master
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/confluent/confluent-component-operator/cp-init-container-operator-6.1.1/-/jobs/10656428
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official
Edited by Ghost User