chore(findings): confluent/confluent-component-operator/cp-schema-registry-operator-5.5.x
Summary
confluent/confluent-component-operator/cp-schema-registry-operator-5.5.x has 10 new findings discovered during continuous monitoring.
| id | source | package |
|---|---|---|
| CVE-2021-33503 | anchore_cve | urllib3-1.26.4 |
| GHSA-q2q7-5pp4-w6pg | anchore_cve | urllib3-1.26.4 |
| CVE-2020-25649 | anchore_cve | zookeeper-3.5.8 |
| CVE-2020-25649 | anchore_cve | zookeeper-3.5.8 |
| CVE-2020-27216 | anchore_cve | zookeeper-3.5.8 |
| CVE-2020-27216 | anchore_cve | zookeeper-3.5.8 |
| CVE-2020-27218 | anchore_cve | zookeeper-3.5.8 |
| CVE-2020-27218 | anchore_cve | zookeeper-3.5.8 |
| CVE-2020-28491 | twistlock_cve | com.fasterxml.jackson.dataformat_jackson-dataformat-cbor-2.10.5 |
| CVE-2021-34428 | twistlock_cve | org.eclipse.jetty_jetty-io-9.4.39.v20210325 |
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/confluent/confluent-component-operator/cp-schema-registry-operator-5.5.x/-/jobs/4609044
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official